last executing test programs:

2.509476953s ago: executing program 1 (id=5229):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="700100003e000701feffffff00000000017c0000040042800c00018006000600800a00004c0102804501148004"], 0x170}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)

2.391239094s ago: executing program 4 (id=5231):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="18"], 0x0}, 0x90)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58)
getsockopt$inet6_mptcp_buf(0xffffffffffffffff, 0x11c, 0x3, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.empty_time\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
r1 = socket(0x11, 0x3, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r3=>0x0})
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)=""/83, 0x53}], 0x1}, 0x0)
bind$packet(r1, &(0x7f0000000180)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f00000003c0)=0x6121, 0x4)
sendmsg$netlink(r1, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e3580009f0001140000002f0600ac141430e0000003808a8972bd0b72e41082b1a3d206"], 0xdd12}], 0x1}, 0x10)

2.295241727s ago: executing program 1 (id=5234):
socket$inet6(0xa, 0x3, 0xff)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10011, 0xffffffffffffffff, 0xa10b1000)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000c40)={'wg2\x00', <r3=>0x0})
sendmmsg(r0, &(0x7f0000001800)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000ec0)='O', 0x1}], 0x1}}, {{&(0x7f0000000c80)=@ll={0x11, 0x19, r3, 0x1, 0x81, 0x6, @broadcast}, 0x80, &(0x7f0000000e80), 0x0, &(0x7f0000001900)=[{0x108, 0x111, 0x3c3, "04855f1978ae7adf5f93e5b5ee28895622c6abe3ca1c2c9447a1ccf402e7df806e6816f23741fd52b1ed98f96f33e6ef4132beef5c21aad3eef446f67a03a706c0b06d3b8e55d0cdb48c7b311d7502858fb185a98c46ba0cc3945fd806c36a0f30bfc6c391f9ded532ded7b0f10a9ff87979c8fef4e944a63db9821494c34b67cc70a7a83323e5f5f5651f62820f40c8da4692780d66c77995119713ee62752060b8a379ce48afe1584fe4dbb2a030d562d8f709f9394a6bc48fb8fb00d792008c3fa96c361557b8a97ecd3f5d3afce5d67dbd150407a9188a91993049e628ead3dc232467d312c145ab5b4d99e6566ec4f1f4d0060a"}, {0x80, 0x38, 0x3ff, "7f6ab7cd3132d5f1f0d080c5b7aecebb6cb19a0fd48231845173b9aeb6fcefdc062a5c9b672d42faddee9a4c8272c4eb98defd986ee9bab242892ca8f91168831c916ee5c3a01251492b3209615dadd3fc3dbe3498d2fe84dd5621eb6ad26a490847dfab9ed97febb7394cc15a3da228"}], 0x188}}], 0x2, 0x1)

2.235829164s ago: executing program 4 (id=5235):
syz_init_net_socket$ax25(0x3, 0x5, 0x6)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r0)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@newtfilter={0x2c, 0x28, 0x10, 0x70bd26, 0x8, {0x0, 0x0, 0x0, 0x0, {0x7, 0x5}}, [@TCA_CHAIN={0x8, 0xb, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48040}, 0x0)
sendmsg$nl_xfrm(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="c16f94263828d04c2035ce7921febdff2920188a34f932b0db847f47940a67c038b9", @ANYBLOB="313a700a2a74e19a0bf83f17f96b22daaa47864a8a830b358ec391c84e32ba37795936c4316f4aa25f4b412d23833c844c34ec55630b2924f92ad1da9026718d0d04857bc31d3b6af0c25bf9128318cbb4b02a98d8f61793c2d0c5c9a65fb70a803eb99fb43650b0dde9dddc479066589182ebb3188225b18ff0dd10bdf848cfb93d809f945d98dde18fcc38d192af131d26b1ae63082e5750", @ANYRES32=r0], 0xec}}, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000000)={'syz_tun\x00', &(0x7f0000002fc0)=@ethtool_coalesce={0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}})
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01400000000000000000067400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a733000080002000000e6ff06000700263a3a0914000600626f6e64300000000000000000000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), r0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000496000/0x2000)=nil, 0x2000, 0x0, 0x12, r4, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f00005d5000/0x2000)=nil, 0x2000, 0x3, 0x28011, r6, 0x0)
mmap(&(0x7f00004a3000/0x1000)=nil, 0x1000, 0x0, 0x13, r5, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000497000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r8, 0xb4807000)
sendmsg$IPCTNL_MSG_CT_DELETE(r6, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x10040014)
ioctl$FS_IOC_RESVSP(r7, 0x40305829, &(0x7f0000000540)={0x1100, 0x0, 0x52, 0x10000})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x6, &(0x7f00000000c0)=ANY=[@ANYBLOB="050000000000000069111c00000000008510000002000000850000000500000095000000000000009500a50500000000e9053a53090e0fb625521e983d56cf9fba060cd25f5ee8b8be6ff3e42f5b108d4ebc9b4fdf7e06d49a4718652488ef4afc2514c8bd7387531514ddefa2789ab137166850d624f4c411781cbf462ab08a57cd750fc0ad4caf859b9f9c5b2fa04fefd2fe55daa7664499bdc3062426e76bfb9bb1a94ae8c5324f1a8090c073c2c6b444326414544a2113d66dce3197fdaca96b470e"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r9, 0x400448c9, 0x0)
bind$bt_hci(r9, &(0x7f0000000080)={0x1f, 0xffff, 0x2}, 0x6)
r10 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
close(r10)

2.165648344s ago: executing program 1 (id=5236):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)={0xb4, 0x0, 0x101, 0x70bd28, 0xfffffffe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7fffffff, 0x42}}}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='s'}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x97}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}], @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x8, 0x0, 0x1, 0x0, {0x2, 0xa, 0x0, 0xaa, 0x0, 0x0, 0x1, 0x2, 0x1}, 0x800, 0x4, 0x6}}, @NL80211_ATTR_CONTROL_PORT={0x4}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xfffffff8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xf82}]]}, 0xb4}, 0x1, 0x0, 0x0, 0x4044014}, 0x48000)

2.155415894s ago: executing program 3 (id=5237):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22041000f3fe80000000000000110880febb0007aafe8000000000000027bfa7b09303960e2b80"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x4, 0x5, 0x2, 0x4, 0x2001, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)
close(r2)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000440)="be7bb690dac0286fcc44aef3ed0b17760db4c712d9d26e53e59a4fa2c7bdfbfafd2f96e8d75732101183e1fc562600de51bb1c5002ab33813ce2951c4acc700640d26af92f8e5c39180f962e2573deb89f9bb683237dceefc106d3dbc07ecb156d6c5263bc03880892fcb6e18e94f2e4fa02c1cedf4019fc6808a918b58c173a84c7fc9bf2d5be53d6e389fcb7de31", 0x8f)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000010000e1850000008600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000001800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f00000000c0)=r6, 0x4)
sendmsg$unix(r5, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

2.068362224s ago: executing program 1 (id=5239):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x68, 0x30, 0x0, 0x0, 0x0, {0x9}, [{0x54, 0x1, [@m_sample={0x50, 0x3fff, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x5, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x4}}}}]}]}, 0x68}}, 0x20040000)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
socket$inet_sctp(0x2, 0x1, 0x84) (async)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in={0x2, 0x4e21, @local}], 0x10)
setsockopt$inet_sctp_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f0000000500)={0x5, 0x4, 0x7, 0x8001}, 0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f00000000c0)={0x4, 0x4, 0x1, 0x9}, 0x10)
sendmsg$inet_sctp(r1, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x2a000}], 0x1, 0x0, 0x0, 0x804c040}, 0x0) (async)
sendmsg$inet_sctp(r1, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x2a000}], 0x1, 0x0, 0x0, 0x804c040}, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="20000000111401a78cbd68edbe2f500008"], 0x20}}, 0x0)

1.776018034s ago: executing program 3 (id=5243):
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000001800)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000ec0)='O', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000d00)="c3dfe1aa2599aecaaeb8da011bca2643c38100626c84eb07", 0x18}, {&(0x7f0000000d40)="4261273ad586cc6dbe6750ab3913ee1a61f4d294a1f5b6085b68a8592773e2c50f", 0x21}, {&(0x7f0000000e00)="6a9f2768f96214afa39e247dc37e0a91ea1fc33764e1d9cf3a12a1f3b740e53f82777fff6f686665b59fbe8f6d8f59f0d42070743ad624e7d1ba687915e959ec3c8c2e115b35a5788459b31fda1d34cc8164c2adb0329fc1fbdbead9b3adf9873c671f7b4f30a838bc1f31a2eb67b504565a", 0x72}], 0x3, &(0x7f0000001900)=[{0x108, 0x111, 0x3c3, "04855f1978ae7adf5f93e5b5ee28895622c6abe3ca1c2c9447a1ccf402e7df806e6816f23741fd52b1ed98f96f33e6ef4132beef5c21aad3eef446f67a03a706c0b06d3b8e55d0cdb48c7b311d7502858fb185a98c46ba0cc3945fd806c36a0f30bfc6c391f9ded532ded7b0f10a9ff87979c8fef4e944a63db9821494c34b67cc70a7a83323e5f5f5651f62820f40c8da4692780d66c77995119713ee62752060b8a379ce48afe1584fe4dbb2a030d562d8f709f9394a6bc48fb8fb00d792008c3fa96c361557b8a97ecd3f5d3afce5d67dbd150407a9188a91993049e628ead3dc232467d312c145ab5b4d99e6566ec4f1f4d0060a"}, {0x80, 0x38, 0x3ff, "7f6ab7cd3132d5f1f0d080c5b7aecebb6cb19a0fd48231845173b9aeb6fcefdc062a5c9b672d42faddee9a4c8272c4eb98defd986ee9bab242892ca8f91168831c916ee5c3a01251492b3209615dadd3fc3dbe3498d2fe84dd5621eb6ad26a490847dfab9ed97febb7394cc15a3da228"}], 0x188}}, {{0x0, 0x0, 0x0}}], 0x3, 0x1)

1.714947967s ago: executing program 3 (id=5246):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000a000000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x8, &(0x7f0000000000)=0xb2, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800c607000000000000d0db000018000000fe560000000000000900000018410000faffffff00000000000000009500000000000000"], &(0x7f00000003c0)='GPL\x00', 0xf, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000400)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000440)={0x1, 0xf, 0x5, 0x200}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000480)=[r0, 0x1, r0], 0x0, 0x10, 0x6}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'vxcan1\x00', <r3=>0x0})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1f, 0x8, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008681000095"], &(0x7f0000000700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', r3, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
socket(0x21, 0x3, 0xfffffffe)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r6, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f00000000c0)=[{0x45}]}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000000)={'gre0\x00', &(0x7f00000000c0)={'gre0\x00', 0x0, 0x700, 0x700, 0x8, 0xffffff89, {{0x5, 0x4, 0x3, 0x18, 0x14, 0x65, 0x0, 0x2, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0xb}, @local}}}})
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r7, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4})
ioctl$sock_netdev_private(r7, 0x89f3, &(0x7f0000000000))
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@var={0xf, 0x0, 0x0, 0xe, 0x4, 0x1}]}}, &(0x7f0000000f40)=""/4096, 0x2a, 0x1000, 0x9}, 0x28)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
ioctl$int_in(r5, 0x5421, &(0x7f0000000100)=0x9)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
gettid()
connect$unix(0xffffffffffffffff, 0x0, 0x0)
connect$inet(r5, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
close(r5)
ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000280)={'xfrm0\x00', 0x400})
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000002c0)={@map=r0, 0x22, 0x0, 0x9, &(0x7f0000000080)=[0x0], 0x1, 0x0, &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280)}, 0x40)

1.44972929s ago: executing program 3 (id=5248):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000010c0)={0x3c, 0x0, 0x1, 0x0, 0x0, {0xa}, [@TIPC_NLA_LINK={0x28, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}]}, 0x3c}}, 0x0) (async)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1) (async)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) (async)
socket$inet_tcp(0x2, 0x1, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'team_slave_1\x00', <r3=>0x0}) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000540)={r5, &(0x7f0000000480), &(0x7f0000000340)=@udp6=r2}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000380)={r6, r3, 0x25, 0x2, @val=@tcx}, 0x1c) (async)
r7 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$sock_proto_private(r7, 0x89e0, &(0x7f00000000c0)) (async)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0xb00, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r9, {}, {}, {0xfff3}}}, 0x24}}, 0x0)

1.257610475s ago: executing program 4 (id=5253):
socket$inet6(0xa, 0x3, 0xff)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10011, 0xffffffffffffffff, 0xa10b1000)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000c40)={'wg2\x00', <r3=>0x0})
sendmmsg(r0, &(0x7f0000001800)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000ec0)='O', 0x1}], 0x1}}, {{&(0x7f0000000c80)=@ll={0x11, 0x19, r3, 0x1, 0x81, 0x6, @broadcast}, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000d00)="c3dfe1aa2599aecaaeb8da011bca2643c38100626c84eb07", 0x18}], 0x1, &(0x7f0000001900)=[{0x108, 0x111, 0x3c3, "04855f1978ae7adf5f93e5b5ee28895622c6abe3ca1c2c9447a1ccf402e7df806e6816f23741fd52b1ed98f96f33e6ef4132beef5c21aad3eef446f67a03a706c0b06d3b8e55d0cdb48c7b311d7502858fb185a98c46ba0cc3945fd806c36a0f30bfc6c391f9ded532ded7b0f10a9ff87979c8fef4e944a63db9821494c34b67cc70a7a83323e5f5f5651f62820f40c8da4692780d66c77995119713ee62752060b8a379ce48afe1584fe4dbb2a030d562d8f709f9394a6bc48fb8fb00d792008c3fa96c361557b8a97ecd3f5d3afce5d67dbd150407a9188a91993049e628ead3dc232467d312c145ab5b4d99e6566ec4f1f4d0060a"}, {0x80, 0x38, 0x3ff, "7f6ab7cd3132d5f1f0d080c5b7aecebb6cb19a0fd48231845173b9aeb6fcefdc062a5c9b672d42faddee9a4c8272c4eb98defd986ee9bab242892ca8f91168831c916ee5c3a01251492b3209615dadd3fc3dbe3498d2fe84dd5621eb6ad26a490847dfab9ed97febb7394cc15a3da228"}], 0x188}}], 0x2, 0x1)

1.196053164s ago: executing program 2 (id=5254):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x1002, @loopback, 0xffdfffff}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000d80)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x4, @loopback, 0x1}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x4080)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x79, &(0x7f0000000140)=ANY=[], 0x8)

1.195640876s ago: executing program 0 (id=5255):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x11, &(0x7f0000000400)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x4}, @map_val={0x18, 0x2, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}]}, &(0x7f00000004c0)='GPL\x00', 0x81, 0xc7, &(0x7f00000007c0)=""/199, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000500)={0x8, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, &(0x7f0000000540)=[{0x4, 0x3, 0x7, 0x2}, {0x4, 0x3, 0xd, 0x8}, {0x3, 0x3, 0xa, 0x9}, {0x4, 0x4, 0xf, 0xc}, {0x5, 0x4, 0x9, 0xb}], 0x10, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000640)='bcache_invalidate\x00', r0}, 0x18)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000280)=[{&(0x7f00000005c0)="580000001400192340834b80040d8c560a06ffffff7f000000014001000058000b480400945f64009400050038925a01000000800000008004000000ff0109000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1)
sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000cc0)=@newqdisc={0x50, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}, [@TCA_NETEM_DELAY_DIST={0x4}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a000004cecf270900012273797a3100000000080005400000002b0900020073797a310000000008000a40fffffffc140000001100010000000000000000000100000a0d67322b9ece97c5a5626865fbcfe1b7705af8369055dc0cf1daf033c1234e0435b2dc9464a7b2c23c37468d"], 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff7}, {0xffff, 0xffff}, {0x5, 0x10}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x40)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r6)
sendmsg$TIPC_CMD_ENABLE_BEARER(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
sendmsg$TIPC_CMD_GET_LINKS(r4, &(0x7f0000000380)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000340)={&(0x7f0000000140)={0x24, r7, 0x100, 0x70bd25, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0x7}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x4000)
recvmmsg(r5, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000080)=[{0xfffffffffffffffd}], 0x1}}], 0x2, 0x0, 0x0)
sendmmsg$sock(r5, &(0x7f0000002a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40000)
socket$inet6_tcp(0xa, 0x1, 0x0)

1.195458703s ago: executing program 3 (id=5256):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000004c0)={'vxcan0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r2=>0x0})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.time\x00', 0x26e1, 0x0)
syz_genetlink_get_family_id$SEG6(0xfffffffffffffffc, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r4)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r4, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000640)=ANY=[@ANYBLOB="6505a8d7708622ca523b5ce48d0649e07b889ec0843b9ff7af61dd57e8cd6e705b6712a5307aa6425de3a8b35540904d6284c35d6334cfd5d99ece3cb0d82da5e89fb016e05e6f9f73124a38d646b0b0dcd33af7fc151f8ecd74a26a40a78504c903b4507c4c6c3b8b5d1e755dfe22d2131673ccad357ffe07", @ANYRES8=r1, @ANYBLOB="000127bd7000fedbdf25070f67288100000005003700010000000500060028000400000008003c00000000000000"], 0x34}}, 0x800)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000840)={'batadv_slave_0\x00', <r7=>0x0})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r9, &(0x7f0000000200), 0x806000)
r10 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, 0x0)
writev(r9, 0x0, 0x0)
write$tun(r9, 0x0, 0x0)
r11 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r7}, 0x94)
r12 = socket(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r12, 0x8933, &(0x7f0000000180))
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2c0000001000010027bd70000000000000000000", @ANYRES32=r10, @ANYBLOB="00410000000000000c002b8008000100", @ANYRES32=r11, @ANYBLOB="336ce8a11dfae1361ac9206db202e113dd5051ac01dfd10847ef70667de06a"], 0x2c}}, 0x4008000)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES32=r2, @ANYBLOB="01002abd7000ffdbdf2514000300180001801400020062617461647630000000000000000000"], 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x20000800)
close(r3)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000740))
ioctl$SIOCSIFHWADDR(r3, 0x8b26, &(0x7f0000000000)={'wlan1\x00', @random="bcff03400200"})
sendto$packet(r1, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)
socket$packet(0x11, 0x3, 0x300)

1.127459089s ago: executing program 2 (id=5257):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0xffffffffffffff7c)
getsockopt$inet6_int(r0, 0x29, 0x0, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@bridge_newvlan={0x18, 0x76, 0x709, 0x1, 0x0, {0x7, 0x2}}, 0x18}, 0x1, 0x5502000000000000}, 0x4000)

1.084477247s ago: executing program 0 (id=5258):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.dequeue\x00', 0x26e1, 0x0)
close(r0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000001340)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @mcast1, @dev={0xfe, 0x80, '\x00', 0x13}}}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, [@alu={0x7, 0x0, 0x3, 0x0, 0x0, 0x1, 0x4}]}, &(0x7f00000005c0)='syzkaller\x00', 0x2}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0600000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000001b00"/28], 0x48)
r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0x0, 0x5, 0x8}, 0xc)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r1, 0x58, &(0x7f00000002c0)}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000005c80)=[{{&(0x7f0000000580)=@pptp={0x18, 0x2, {0x0, @remote}}, 0x80, 0x0}, 0xa}, {{&(0x7f0000000d80)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @mcast2}}, 0x80, 0x0}, 0x100}], 0x2, 0x2, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="16000000000000000100000006"], 0x48)
bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000040)={r3, 0x0, 0x20000000}, 0x20)
listen(r2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r2}, 0x20)
sendmmsg$inet6(r2, &(0x7f0000002440)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000600)="e2", 0x1}], 0x1}}, {{0x0, 0x1, &(0x7f0000000480)}}], 0x400, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x1, 0x0)
r7 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_netrom_SIOCADDRT(r7, 0x890b, &(0x7f0000000000)={0x1, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0x1, 'syz1\x00', @bcast, 0xff, 0x8, [@bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]})
sendmsg(r7, &(0x7f00000003c0)={&(0x7f0000000200)=@phonet={0x23, 0x1, 0x81, 0x40}, 0x80, 0x0}, 0x40041)
ioctl$SIOCNRDECOBS(r7, 0x89e2)
r8 = socket$unix(0x1, 0x2, 0x0)
accept$unix(r8, &(0x7f00000002c0)=@abs, &(0x7f0000000340)=0x6e)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000800), r6)

1.031859707s ago: executing program 1 (id=5259):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0258ff000000000000000058000b4824ca945f64009400ffc094010ebc000000000000008000f0fffeff0300000000fff5dd00000010000100090810000c00000000040000", 0x58}], 0x1)
socketpair(0x1d, 0x80000, 0x401, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000002c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket(0xa, 0x2, 0x0)
getpeername$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r4=>0x0}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', r4}, 0x50)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000002c0)={0xffffffffffffffff, 0x20, &(0x7f0000000280)={&(0x7f0000000a40)=""/4096, 0x1000, <r6=>0x0, 0x0}}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_type(r8, &(0x7f00000000c0), 0x9)
sendfile(r8, r7, 0x0, 0x10000)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x800000}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r5}, {}, {}, {}, {0x7, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffe00}, {}, {}, {0x85, 0x0, 0x0, 0x55}}]}, &(0x7f0000000300)='syzkaller\x00', 0x5b8c, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @xdp, r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x10, 0xffffffff, 0x5, 0x9, 0x8000, 0xffffffffffffffff, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x1}, 0x50)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
vmsplice(r10, 0x0, 0x0, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x12, 0xb, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r12}, &(0x7f0000000040), &(0x7f0000000140)=r11}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r12}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r8}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r12, &(0x7f0000000040)}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000480)={{0xffffffffffffffff, <r13=>0xffffffffffffffff}, &(0x7f0000000400), &(0x7f0000000440)='%pS    \x00'}, 0x20)
r14 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000004c0)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0)
r15 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000500)={0x1b, 0x0, 0x0, 0x401, 0x0, 0xffffffffffffffff, 0x401, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{0xffffffffffffffff, <r16=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1b, 0x15, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x800}, [@map_idx={0x18, 0x5, 0x5, 0x0, 0x3}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, 0x1}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x8}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x64, &(0x7f0000000240)=""/100, 0x41100, 0x1, '\x00', 0x0, @fallback=0x1e, r2, 0x8, &(0x7f0000000300)={0x8, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0x7, 0xf5, 0xd32}, 0x10, r6, 0xffffffffffffffff, 0x4, &(0x7f0000000640)=[r9, 0x1, r10, r12, r13, r14, r15, r16], &(0x7f0000000680)=[{0x1, 0x5, 0x2, 0x7}, {0x2, 0x5, 0x2, 0x5}, {0x2, 0x1, 0x2, 0xb}, {0x1, 0x3, 0x1, 0x5}], 0x10, 0xe20b}, 0x94)
setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, &(0x7f0000000040)=0x1, 0x4)

1.031554304s ago: executing program 4 (id=5260):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r2, 0x0, 0xb, 0x0, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x66, 0x903, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r4, {0xe, 0x7}, {0x7c2378cc973e4a5, 0xfff1}, {0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) (async)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) (async)
socket(0x400000000010, 0x3, 0x0) (async)
socket$inet_mptcp(0x2, 0x1, 0x106) (async)
setsockopt$inet_int(r2, 0x0, 0xb, 0x0, 0x0) (async)
socket$unix(0x1, 0x5, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) (async)
socket(0x400000000010, 0x3, 0x0) (async)
socket$unix(0x1, 0x1, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) (async)
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x66, 0x903, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r4, {0xe, 0x7}, {0x7c2378cc973e4a5, 0xfff1}, {0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804) (async)

954.113208ms ago: executing program 2 (id=5261):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c40)=@delchain={0x15c, 0x65, 0x8, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0xe, 0x2}, {0x0, 0xe}, {0x6, 0xb}}, [@filter_kind_options=@f_flow={{0x9}, {0x11c, 0x2, [@TCA_FLOW_ADDEND={0x8}, @TCA_FLOW_XOR={0x8, 0x7, 0x1ff}, @TCA_FLOW_XOR={0x8, 0x7, 0xfffffff9}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0x7fff}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_ACT={0xf0, 0x9, 0x0, 0x1, [@m_mpls={0xec, 0x1e, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_MPLS_TC={0x5, 0x6, 0x6}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x2, 0x0, 0xffffffffffffffff, 0xfffffffb, 0x8}, 0x3}}, @TCA_MPLS_TTL={0x5, 0x7, 0x9}]}, {0x91, 0x6, "38a86b2ea57c2ab9fc6990b590e2cf10b4525acddaa1a21554b3536689e103f92b2b35d2340847a99750261d33b226164f17bc0e5e17b66b648a19530fd437c23b32848120ccc8079c0d909366fa5c7c6e0772fffd9471a08bf86ffeeb3ef13d084c83ed13433f29d53d9b8409105aba551cdd294c04e6c19f9e1db7d4d3ea87db657398cb522b988f05fe8b7f"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}, @TCA_RATE={0x6, 0x5, {0xff, 0x2}}, @TCA_CHAIN={0x8, 0xb, 0x441d}]}, 0x15c}, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b000000000000", 0x10, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f, 0xa1}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})

873.300258ms ago: executing program 0 (id=5262):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)={0xb4, 0x0, 0x101, 0x70bd28, 0xfffffffe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7fffffff, 0x42}}}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='s'}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x97}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}], @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x8, 0x0, 0x1, 0x0, {0x2, 0xa, 0x0, 0xaa, 0x0, 0x0, 0x1, 0x2, 0x1}, 0x800, 0x4, 0x6}}, @NL80211_ATTR_CONTROL_PORT={0x4}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xfffffff8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xf82}]]}, 0xb4}, 0x1, 0x0, 0x0, 0x4044014}, 0x48000)

651.970785ms ago: executing program 2 (id=5263):
r0 = socket$kcm(0x2d, 0x2, 0x0)
r1 = socket(0x2d, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r1, &(0x7f0000000080)={&(0x7f0000000000)={0x2d, 0x1f, 0x1f, 0x100}, 0xc, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x80}, 0xc0)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000180)={r0})

651.542316ms ago: executing program 0 (id=5264):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000040)={0x5c, 0x2, 0x6, 0x301, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x5}]}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:mac\x00'}]}, 0x5c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, &(0x7f0000000140)=@raw=[@ldst={0x1, 0x2, 0x4, 0x0, 0x1, 0x70}, @exit], &(0x7f00000000c0)='GPL\x00'}, 0x94)
ioctl$SIOCSIFHWADDR(r2, 0x8b04, &(0x7f0000000040)={'wlan1\x00', @random="018dffffffff"})
getsockopt$netlink(r1, 0x10e, 0x1, &(0x7f0000000100)=""/2, &(0x7f0000000180)=0x2)
r3 = socket(0x2, 0x5, 0x0)
connect$inet(r3, 0x0, 0x0)
bind$netlink(r0, &(0x7f00000001c0)={0x10, 0x0, 0x25dfdbff, 0x100000}, 0xc)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
r5 = getpid()
ioctl$sock_SIOCSPGRP(r4, 0x8902, &(0x7f0000000180)=r5)
r6 = socket$nl_audit(0x10, 0x3, 0x9)
getpeername$netlink(r6, 0x0, &(0x7f0000000380))
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x48, 0x3, 0xa, 0x301, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x2b780af2}]}]}], {0x14}}, 0x90}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb0006"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x60}, 0x1, 0x0, 0x0, 0x8010}, 0x4000800)

573.333989ms ago: executing program 4 (id=5265):
unshare(0x22020400)
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r2=>0x0}, 0x8)
r3 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000)=r2, 0x4)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={r3, r1, 0x0, r0}, 0x10)

338.573465ms ago: executing program 0 (id=5266):
socket$kcm(0x10, 0x2, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfe, {{@in6=@private0, @in=@remote, 0x0, 0x4, 0x0, 0x0, 0xa, 0x60, 0x60, 0x3b, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x9, 0x0, 0x0, 0x0, 0x2}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x50)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40}, {0x1, 0x0, 0x9}, {0x0, 0x5}}}, 0xb8}}, 0x4000)

255.950714ms ago: executing program 4 (id=5267):
socket$igmp6(0xa, 0x3, 0x2)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
listen(r0, 0x0)
connect$rose(r0, &(0x7f0000000040)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x0, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x40)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f00000000c0)={0x18, 0x0, {0x4, @multicast, 'bond0\x00'}}, 0x1e)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000840)=ANY=[@ANYBLOB="1802000040000000000000000000000085000000d100000095"], &(0x7f0000000000)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x2c, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000801}, 0x94)
r2 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000010c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x0)
ioctl$SIOCX25SCALLUSERDATA(r2, 0x89e5, &(0x7f0000001240)={0x47, "5549fe4c073ee9a1271289fb526abb0d44e7a9cbb341d2cc2f410678268bdace2119c692719a40af626871ee3f9ef0af48757a4a39453ef342e4558e655515f50c8ea7e78808a795c961b638d4756904a0d2c50e514858790cb048ed853bf58c1e067da0905f414d2b6dcd8ef8220147048cdd07a7787a8dbefdc191d41436af"})
syz_emit_ethernet(0x66, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa1486dd60cb653e00303a0000000000000000000000ffffac14413c3cd69162e35700000000000000000001a10090780000000060256b5400000000ff010000000000000000000000000001fe80000000000000000000000000003b"], 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0)
write$tun(r4, &(0x7f0000000280)=ANY=[@ANYBLOB="01008523592427880889a35fd5c26688fad8adab31126154b84e300baf4d49ef4dc5640500166d50dc84e55e439fc59d7f41a6dfa8135c2e477116f9cbb8fa274d0810092d58d8fb62c5c579163c97cd0e604bac47e560ab7e17a7ff5dbab03ad6"], 0x61)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a0b0400000000000000000200000088000480240001800b000100736f636b6574000014000280080002400000000308000140000000024c0001800b00010065787468647200003c000280080002400000007508000340000000590800064000000002080006400000000108000440000000b905000200070000000500020007000000140001800a00010071756f7461000000040002800900010073797a30000000000900020073797a32"], 0x17c}}, 0x40880)
recvmsg(r3, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x22052, r6, 0x0)
mmap(&(0x7f00007a6000/0x3000)=nil, 0x3000, 0x100000c, 0x22051, r6, 0x0)
setsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'hsr0\x00', <r7=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=@bridge_delneigh={0x1c, 0x1d, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, r7, 0x0, 0xd2, 0xb}}, 0x1c}}, 0x0)
accept4$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x10)

255.638049ms ago: executing program 2 (id=5268):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='blkio.bfq.dequeue\x00', 0x26e1, 0x0)
close(r0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000001340)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @mcast1, @dev={0xfe, 0x80, '\x00', 0x13}}}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, [@alu={0x7, 0x0, 0x3, 0x0, 0x0, 0x1, 0x4}]}, &(0x7f00000005c0)='syzkaller\x00', 0x2}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0600000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000001b00"/28], 0x48)
r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0x0, 0x5, 0x8}, 0xc)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r1, 0x58, &(0x7f00000002c0)}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000005c80)=[{{&(0x7f0000000580)=@pptp={0x18, 0x2, {0x0, @remote}}, 0x80, 0x0}, 0xa}, {{&(0x7f0000000d80)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @mcast2}}, 0x80, 0x0}, 0x100}], 0x2, 0x2, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="16000000000000000100000006"], 0x48)
bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000040)={r3, 0x0, 0x20000000}, 0x20)
listen(r2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r2}, 0x20)
sendmmsg$inet6(r2, &(0x7f0000002440)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000600)="e2", 0x1}], 0x1}}, {{0x0, 0x1, &(0x7f0000000480)}}], 0x400, 0x10) (fail_nth: 3)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x1, 0x0)
r7 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
ioctl$sock_netrom_SIOCADDRT(r7, 0x890b, &(0x7f0000000000)={0x1, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0x1, 'syz1\x00', @bcast, 0xff, 0x8, [@bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}]})
sendmsg(r7, &(0x7f00000003c0)={&(0x7f0000000200)=@phonet={0x23, 0x1, 0x81, 0x40}, 0x80, 0x0}, 0x40041)
ioctl$SIOCNRDECOBS(r7, 0x89e2)
r8 = socket$unix(0x1, 0x2, 0x0)
accept$unix(r8, &(0x7f00000002c0)=@abs, &(0x7f0000000340)=0x6e)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000800), r6)

133.014581ms ago: executing program 3 (id=5269):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='svc_unregister\x00', r0, 0x0, 0xfaf}, 0x18)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, 0x0)
sendfile(r1, r2, &(0x7f0000000100)=0x1, 0x100000001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000080)='svc_unregister\x00', r2, 0x0, 0xfaf}, 0x18)
sendmsg$netlink(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="1400000025000100000000000000040006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)

107.695903ms ago: executing program 1 (id=5270):
socket$inet6(0xa, 0x3, 0xff)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10011, 0xffffffffffffffff, 0xa10b1000)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000c40)={'wg2\x00', <r3=>0x0})
sendmmsg(r0, &(0x7f0000001800)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000ec0)='O', 0x1}], 0x1}}, {{&(0x7f0000000c80)=@ll={0x11, 0x19, r3, 0x1, 0x81, 0x6, @broadcast}, 0x80, &(0x7f0000000e80)=[{&(0x7f0000000d00)="c3dfe1aa2599aecaaeb8da011bca2643c38100626c84eb07", 0x18}], 0x1, &(0x7f0000001900)=[{0x108, 0x111, 0x3c3, "04855f1978ae7adf5f93e5b5ee28895622c6abe3ca1c2c9447a1ccf402e7df806e6816f23741fd52b1ed98f96f33e6ef4132beef5c21aad3eef446f67a03a706c0b06d3b8e55d0cdb48c7b311d7502858fb185a98c46ba0cc3945fd806c36a0f30bfc6c391f9ded532ded7b0f10a9ff87979c8fef4e944a63db9821494c34b67cc70a7a83323e5f5f5651f62820f40c8da4692780d66c77995119713ee62752060b8a379ce48afe1584fe4dbb2a030d562d8f709f9394a6bc48fb8fb00d792008c3fa96c361557b8a97ecd3f5d3afce5d67dbd150407a9188a91993049e628ead3dc232467d312c145ab5b4d99e6566ec4f1f4d0060a"}, {0x80, 0x38, 0x3ff, "7f6ab7cd3132d5f1f0d080c5b7aecebb6cb19a0fd48231845173b9aeb6fcefdc062a5c9b672d42faddee9a4c8272c4eb98defd986ee9bab242892ca8f91168831c916ee5c3a01251492b3209615dadd3fc3dbe3498d2fe84dd5621eb6ad26a490847dfab9ed97febb7394cc15a3da228"}], 0x188}}], 0x2, 0x1)

86.625808ms ago: executing program 0 (id=5271):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r3, &(0x7f0000000040)={0x23, 0x14}, 0x10)
bind$phonet(r2, &(0x7f0000000000)={0x23, 0x4}, 0x10)
r4 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r4, &(0x7f0000000040)={0x23, 0x4, 0x2}, 0x10)
recvmsg(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000640)=""/2, 0x2}, {&(0x7f0000000680)=""/24, 0x18}], 0x2}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff}, [@call={0x85, 0x0, 0x0, 0x87}, @printk={@i, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xd0}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x2}, 0x94)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_int(r6, 0x29, 0x4b, &(0x7f0000000000)=0x5, 0x4)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000040)={0xa, 0x4e22, 0x2, @empty}, 0x1c)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0xe, 0x0, &(0x7f0000000700)="e0cdc1ed484aae0736d6b9547ed3", 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
write$tun(0xffffffffffffffff, &(0x7f0000000740)={@void, @void, @mpls={[{0x3}], @ipv4=@dccp={{0xa, 0x4, 0x2, 0x4, 0x1038, 0x68, 0x0, 0x3, 0x21, 0x0, @empty, @empty, {[@rr={0x7, 0x13, 0xc9, [@empty, @dev={0xac, 0x14, 0x14, 0x25}, @dev={0xac, 0x14, 0x14, 0x19}, @multicast1]}]}}, {{0x4e22, 0x4e21, 0x4, 0x1, 0xf, 0x0, 0x0, 0x4, 0x1, "1b94fd", 0xdb, "1029ff"}, "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"}}}}, 0x103c)

0s ago: executing program 2 (id=5272):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe3}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x2000c801, &(0x7f0000000400)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f00000007c0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000019c0)="345626b66430b3757413b8cb18534d02ba25ff770d77ddc4d89b4b7812c65a3eb63fbcfe41a2d57d3d11e202ec5834967b0193c7e05c1de2a83f4088aa66b2a1e3f360cb90176b1eb1074187a63b3d8fd2e6ee686292c8e5ec9426939c547c26313ec1c02bf6221209b77caab97d98f9fd9b39b17af35fcd4aa260e0ed554114b23b793b3a594a636605f2e4d572bb91f145689910fe01183982473bda891044a0a691b88b459779cacde7ff50e6b1f51b7a9768b0c3c2b6f50b49619f8decb18140eabe6dea67f19fd7416539f752df1a29919c1312508214a287011bbbbf214a726c846a8b5cbd6ea7ecf4e913f0f9cec6de01d6eecba621886f0ce05195d0c6d0554b795d6102d2b85b53667eaed191bb428bd4d17d2aa9e0dcfb1555052d7970d8f2ffa14f4f40bd765d3e8fb28d5c0138531be72cfb382e42aa2295b473c22b8be1af89de9021863f2a7424bce3b1691b243db23250af8528d3e9b5ce77d26331af15976daddeb1c5c6ef5d6887058b8244ed5e8d27af85086fc9e081a4922dc790a5159d9306d099d8defbd1f28754e257b9eefcb4f33d7cf53eb90c7e0227de4ea7fff474c5da25fcc13aecebb650e7fcdf96177317c18307bfb39af051410c1de4e35ca7452be0163bb06a4cb40c12fd7b5cb7ba97cdee8079727748138c6b788f5c48831a9d5cd9d4088a5512434a15e282ae3420fb0caaba39893fcc91a1c82b627d327289abfb8b7a7284487d5a5ea04f40b78976430772887a787171c73b94978197686c520c9802da60177d318662562c76e9b8b1a4146d0c51db28cecd7aa5375cb55da7b0ba8e5f16c4d07e892a8f97d911209eadaa0982f13ad7207f55f127a7636750402636b7899dd1db3e27f25b46482a2ad78d4a9c1fc6c28ac3e6c2dbca389288f4c8fd77fca525f5a8edc2f845d24659433e909db5e6e81f736e240dadbb35c423307b49de64f18f40e06fe4e009eb6ec2513e611e2a771113f302a8202a936c3d8457ad978b8af3871043b1a649a50bce6b7dc51d882d474d57c6c01dc08ab2c4f23503698d7c257c779074820562d93662e54c2afba3fbd65b7afb790208fa5d916c2ea4b964fa518ced19723ebbeb4b89772bf4c4333bc8490841df8fcadb7cffc46894a1030edb4ee41a9639f06e6dc7572324d284029c12be139a1ed6ad9bb80467da18ba2aa4bc464b59e5246a8801505f26e6191cf7e68c916a916c73042c58db14ac7c63f451d21cd088406366962c6331f975c4dae077429c03be87686740d7f821fe16a5aa13bd14f87b3caa8a7c7039273107a431cb5319cb1271cd68fb744e1f010c5d25a174bc33e309add9fff21b4295a0a5d84e1cc392ceb25d1fb9c666a9acbcfe71802958a63203351d06fc3fc4531b989cadd6b777e37deaca3d704c716a84003b537ab45b3d80f07dfeb306906bcacc7b6c05395c2b5f9a714fd1027be3a0db6c72ed123a8610ba102b5c80e5c681de35e8945e9e1ed227fcf3c4df01d730b72500c3d9ad7e4b55ee770d7c200c7b9d379768353395c9427551ac35671c99e51ec0f233962b8068d54144336cb98255073978bde39120f50274d4a7a34178bc4726441be1d474e68da6d04c8574b8f88cd369843dda4cfb68708c7bae2bfc26310ced2b55b5639bd67491b321efcc904ae26f7371a02bf739ea923409a5ba3233c9a464396abf1bd7ebecae263f81624f4d49d82484242fe490898fed1dd4c898339565edbda640a7bbd98c293370a3c14d4a62eb2f27cb329502a265b9fb085b94f3a9fed027bc7a67f2563591def325480135ea2061b06bc6dd18f720acab3b604d0e25caedb0d9d26dfc7a8df693dd149317a6a6c39512bec2e70bd94d9222e68fde04aaed3da4c1104c0d4825887de51e84635f423e8af2e09bf84588f32eac196e970ccc2c28c17ba8d963f2f45f1939f53c908812d404e5fd97660a0e4220acb679cfdcaa6d2e6899dadf09c1c58806d3e6bc5174abf63a7150934f06dca669a374ab4813538c955effb1c70fe444a70c0102511ba03d4ea96d4b9388d6963c5598db282d479910794e259da1bec53436d1ad6feb73b2ff992b8933d2346c1dd11988ebbb5c47c28205b1f8b43fdad0982375250e807fb4fa8b3fd91bb67f6143dd28dab248a2ce2ad36c5e2dd4aeaebfbb6f9e90b7efb6125841ef03949a053419f3ce3ab05ee21fae98c584fa5823e0ddd8280d6a9f3916a9368c6814076d3a4aaadbe19b0ffd873b2671ea40f89d06c28294b77b140e82b7914961dbf7997ac2e34fc03d3ef87107c311035f34e67699f7a73d7bf9c4f68b793e5e664c2c747b4c4b993d3085cbc4194540f6d67f4ad54bf6d89d320d6a710b972ec28961b452311240ebb9725b7ecc31879d45db9c383eeebe6500c2fd7b9996e5d0d7783d37826a265de471bb62efa09ac14f5320e6b8d12ba11c40b4bac6e2e4c802e0150b4594fc9243ff850ee381c0a69ef05bac6683542ce8c371ae02d729c12d06254e8710fb821132d5e957d024fd26f2d3e3091f139cdad6d8d08e9e91f77813e8297b8a757b", 0x71d}], 0x1}}], 0x1, 0x400c0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000480)=0x1df9, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x1d4c, 0x10048095, 0x0, 0x0)

kernel console output (not intermixed with test programs):

27.091236][T20067]  ? __pfx__copy_from_iter+0x10/0x10
[  527.091265][T20067]  ? set_page_refcounted+0xa0/0x1e0
[  527.091293][T20067]  ? page_copy_sane+0x4e/0x280
[  527.091314][T20067]  copy_page_from_iter+0xdd/0x170
[  527.091336][T20067]  tun_get_user+0x1d7b/0x3e20
[  527.091365][T20067]  ? tun_get_user+0x6f6/0x3e20
[  527.091396][T20067]  ? aa_file_perm+0x44d/0x1550
[  527.091418][T20067]  ? __pfx_tun_get_user+0x10/0x10
[  527.091438][T20067]  ? _parse_integer_limit+0x1ae/0x1f0
[  527.091479][T20067]  ? __lock_acquire+0xab9/0xd20
[  527.091517][T20067]  ? ref_tracker_alloc+0x318/0x460
[  527.091543][T20067]  ? __lock_acquire+0xab9/0xd20
[  527.091576][T20067]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  527.091611][T20067]  ? tun_get+0x1c/0x2f0
[  527.091636][T20067]  ? tun_get+0x1c/0x2f0
[  527.091653][T20067]  ? tun_get+0x1c/0x2f0
[  527.091677][T20067]  tun_chr_write_iter+0x113/0x200
[  527.091700][T20067]  vfs_write+0x5c9/0xb30
[  527.091735][T20067]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  527.091765][T20067]  ? __pfx_vfs_write+0x10/0x10
[  527.091804][T20067]  ? __fget_files+0x2a/0x420
[  527.091848][T20067]  ksys_write+0x145/0x250
[  527.091878][T20067]  ? __pfx_ksys_write+0x10/0x10
[  527.091902][T20067]  ? rcu_is_watching+0x15/0xb0
[  527.091930][T20067]  ? do_syscall_64+0xbe/0x3b0
[  527.091966][T20067]  do_syscall_64+0xfa/0x3b0
[  527.091997][T20067]  ? lockdep_hardirqs_on+0x9c/0x150
[  527.092026][T20067]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.092047][T20067]  ? clear_bhb_loop+0x60/0xb0
[  527.092073][T20067]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.092094][T20067] RIP: 0033:0x7f67f8f8d69f
[  527.092113][T20067] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  527.092133][T20067] RSP: 002b:00007f67f9d23000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  527.092155][T20067] RAX: ffffffffffffffda RBX: 00007f67f91b5fa0 RCX: 00007f67f8f8d69f
[  527.092171][T20067] RDX: 0000000000000046 RSI: 0000200000000200 RDI: 00000000000000c8
[  527.092185][T20067] RBP: 00007f67f9d23090 R08: 0000000000000000 R09: 0000000000000000
[  527.092197][T20067] R10: 0000000000000046 R11: 0000000000000293 R12: 0000000000000001
[  527.092209][T20067] R13: 00007f67f91b6038 R14: 00007f67f91b5fa0 R15: 00007ffd0b5186d8
[  527.092244][T20067]  </TASK>
[  527.786353][T20080] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4604'.
[  528.538654][T20099] FAULT_INJECTION: forcing a failure.
[  528.538654][T20099] name failslab, interval 1, probability 0, space 0, times 0
[  528.610060][T20099] CPU: 0 UID: 0 PID: 20099 Comm: syz.4.4608 Not tainted syzkaller #0 PREEMPT(full) 
[  528.610091][T20099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  528.610104][T20099] Call Trace:
[  528.610113][T20099]  <TASK>
[  528.610122][T20099]  dump_stack_lvl+0x189/0x250
[  528.610154][T20099]  ? __pfx____ratelimit+0x10/0x10
[  528.610195][T20099]  ? __pfx_dump_stack_lvl+0x10/0x10
[  528.610221][T20099]  ? __pfx__printk+0x10/0x10
[  528.610259][T20099]  ? __pfx___might_resched+0x10/0x10
[  528.610285][T20099]  should_fail_ex+0x414/0x560
[  528.610319][T20099]  should_failslab+0xa8/0x100
[  528.610363][T20099]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  528.610394][T20099]  ? __alloc_skb+0x112/0x2d0
[  528.610431][T20099]  __alloc_skb+0x112/0x2d0
[  528.610469][T20099]  netlink_sendmsg+0x5c6/0xb30
[  528.610512][T20099]  ? __pfx_netlink_sendmsg+0x10/0x10
[  528.610550][T20099]  ? aa_sock_msg_perm+0xf1/0x1d0
[  528.610586][T20099]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  528.610609][T20099]  ? __pfx_netlink_sendmsg+0x10/0x10
[  528.610643][T20099]  __sock_sendmsg+0x219/0x270
[  528.610672][T20099]  ____sys_sendmsg+0x505/0x830
[  528.610699][T20099]  ? __pfx_____sys_sendmsg+0x10/0x10
[  528.610730][T20099]  ? import_iovec+0x74/0xa0
[  528.610759][T20099]  ___sys_sendmsg+0x21f/0x2a0
[  528.610783][T20099]  ? __pfx____sys_sendmsg+0x10/0x10
[  528.610846][T20099]  ? __fget_files+0x2a/0x420
[  528.610876][T20099]  ? __fget_files+0x3a0/0x420
[  528.610920][T20099]  __x64_sys_sendmsg+0x19b/0x260
[  528.610945][T20099]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  528.610979][T20099]  ? __pfx_ksys_write+0x10/0x10
[  528.611003][T20099]  ? rcu_is_watching+0x15/0xb0
[  528.611030][T20099]  ? do_syscall_64+0xbe/0x3b0
[  528.611064][T20099]  do_syscall_64+0xfa/0x3b0
[  528.611092][T20099]  ? lockdep_hardirqs_on+0x9c/0x150
[  528.611121][T20099]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.611141][T20099]  ? clear_bhb_loop+0x60/0xb0
[  528.611166][T20099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  528.611187][T20099] RIP: 0033:0x7f7d55b8ebe9
[  528.611206][T20099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  528.611224][T20099] RSP: 002b:00007f7d53df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  528.611247][T20099] RAX: ffffffffffffffda RBX: 00007f7d55db5fa0 RCX: 00007f7d55b8ebe9
[  528.611262][T20099] RDX: 0000000004004000 RSI: 0000200000000040 RDI: 0000000000000004
[  528.611276][T20099] RBP: 00007f7d53df6090 R08: 0000000000000000 R09: 0000000000000000
[  528.611289][T20099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  528.611302][T20099] R13: 00007f7d55db6038 R14: 00007f7d55db5fa0 R15: 00007ffcd4086cf8
[  528.611336][T20099]  </TASK>
[  529.822214][ T9636] IPVS: starting estimator thread 0...
[  529.918654][T20150] IPVS: using max 28 ests per chain, 67200 per kthread
[  530.130423][T20163] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4624'.
[  530.162721][T20164] netlink: 'syz.3.4625': attribute type 10 has an invalid length.
[  530.174584][T20164] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  530.317266][T20171] netlink: 277 bytes leftover after parsing attributes in process `syz.1.4627'.
[  530.532304][T20175] !
: renamed from dummy0 (while UP)
[  530.625621][T20190] FAULT_INJECTION: forcing a failure.
[  530.625621][T20190] name failslab, interval 1, probability 0, space 0, times 0
[  530.718383][T20190] CPU: 1 UID: 0 PID: 20190 Comm: syz.1.4630 Not tainted syzkaller #0 PREEMPT(full) 
[  530.718414][T20190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  530.718428][T20190] Call Trace:
[  530.718436][T20190]  <TASK>
[  530.718445][T20190]  dump_stack_lvl+0x189/0x250
[  530.718477][T20190]  ? __pfx____ratelimit+0x10/0x10
[  530.718507][T20190]  ? __pfx_dump_stack_lvl+0x10/0x10
[  530.718539][T20190]  ? __pfx__printk+0x10/0x10
[  530.718576][T20190]  ? __pfx___might_resched+0x10/0x10
[  530.718602][T20190]  should_fail_ex+0x414/0x560
[  530.718636][T20190]  should_failslab+0xa8/0x100
[  530.718669][T20190]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  530.718699][T20190]  ? __alloc_skb+0x112/0x2d0
[  530.718737][T20190]  __alloc_skb+0x112/0x2d0
[  530.718773][T20190]  netlink_sendmsg+0x5c6/0xb30
[  530.718816][T20190]  ? __pfx_netlink_sendmsg+0x10/0x10
[  530.718851][T20190]  ? aa_sock_msg_perm+0xf1/0x1d0
[  530.718886][T20190]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  530.718909][T20190]  ? __pfx_netlink_sendmsg+0x10/0x10
[  530.718942][T20190]  __sock_sendmsg+0x219/0x270
[  530.718975][T20190]  ____sys_sendmsg+0x505/0x830
[  530.719004][T20190]  ? __pfx_____sys_sendmsg+0x10/0x10
[  530.719038][T20190]  ? import_iovec+0x74/0xa0
[  530.719067][T20190]  ___sys_sendmsg+0x21f/0x2a0
[  530.719092][T20190]  ? __pfx____sys_sendmsg+0x10/0x10
[  530.719158][T20190]  ? __fget_files+0x2a/0x420
[  530.719191][T20190]  ? __fget_files+0x3a0/0x420
[  530.719236][T20190]  __x64_sys_sendmsg+0x19b/0x260
[  530.719263][T20190]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  530.719296][T20190]  ? __pfx_ksys_write+0x10/0x10
[  530.719323][T20190]  ? rcu_is_watching+0x15/0xb0
[  530.719352][T20190]  ? do_syscall_64+0xbe/0x3b0
[  530.719388][T20190]  do_syscall_64+0xfa/0x3b0
[  530.719422][T20190]  ? lockdep_hardirqs_on+0x9c/0x150
[  530.719452][T20190]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.719473][T20190]  ? clear_bhb_loop+0x60/0xb0
[  530.719499][T20190]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  530.719526][T20190] RIP: 0033:0x7fde0bf8ebe9
[  530.719545][T20190] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  530.719564][T20190] RSP: 002b:00007fde0ce88038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  530.719587][T20190] RAX: ffffffffffffffda RBX: 00007fde0c1b5fa0 RCX: 00007fde0bf8ebe9
[  530.719603][T20190] RDX: 0000000000000010 RSI: 0000200000000240 RDI: 0000000000000003
[  530.719617][T20190] RBP: 00007fde0ce88090 R08: 0000000000000000 R09: 0000000000000000
[  530.719630][T20190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  530.719642][T20190] R13: 00007fde0c1b6038 R14: 00007fde0c1b5fa0 R15: 00007ffd045c09d8
[  530.719677][T20190]  </TASK>
[  531.739438][T20220] netlink: 'syz.2.4635': attribute type 1 has an invalid length.
[  533.380480][T20274] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4640'.
[  533.553494][T20272] gtp5: entered promiscuous mode
[  533.570397][T20272] gtp5: entered allmulticast mode
[  534.250221][T20305] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4647'.
[  534.315288][T20305] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4647'.
[  534.678148][   T59] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 20001 - 0
[  534.737357][   T59] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 20001 - 0
[  534.771856][   T59] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 20001 - 0
[  534.815588][   T59] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 20001 - 0
[  535.284180][T20347] gtp8: entered promiscuous mode
[  535.324778][T20347] gtp8: entered allmulticast mode
[  535.375498][T20341] netlink: 68 bytes leftover after parsing attributes in process `syz.3.4659'.
[  535.501159][T20362] netlink: 'syz.1.4660': attribute type 29 has an invalid length.
[  535.664383][T20366] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4662'.
[  535.855032][T20373] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input62
[  536.029446][T20380] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4665'.
[  536.425611][T20394] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4669'.
[  536.475721][T20398] netlink: 'syz.2.4670': attribute type 1 has an invalid length.
[  536.494195][T20398] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4670'.
[  536.979571][T20420] gtp6: entered promiscuous mode
[  537.001097][T20420] gtp6: entered allmulticast mode
[  537.117812][T20429] FAULT_INJECTION: forcing a failure.
[  537.117812][T20429] name failslab, interval 1, probability 0, space 0, times 0
[  537.146901][T20421] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4675'.
[  537.158916][T20429] CPU: 1 UID: 0 PID: 20429 Comm: syz.1.4676 Not tainted syzkaller #0 PREEMPT(full) 
[  537.158947][T20429] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  537.158961][T20429] Call Trace:
[  537.158969][T20429]  <TASK>
[  537.158978][T20429]  dump_stack_lvl+0x189/0x250
[  537.159011][T20429]  ? __pfx____ratelimit+0x10/0x10
[  537.159041][T20429]  ? __pfx_dump_stack_lvl+0x10/0x10
[  537.159067][T20429]  ? __pfx__printk+0x10/0x10
[  537.159105][T20429]  ? __pfx___might_resched+0x10/0x10
[  537.159131][T20429]  should_fail_ex+0x414/0x560
[  537.159166][T20429]  should_failslab+0xa8/0x100
[  537.159200][T20429]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  537.159232][T20429]  ? __alloc_skb+0x112/0x2d0
[  537.159269][T20429]  __alloc_skb+0x112/0x2d0
[  537.159307][T20429]  netlink_sendmsg+0x5c6/0xb30
[  537.159351][T20429]  ? __pfx_netlink_sendmsg+0x10/0x10
[  537.159388][T20429]  ? aa_sock_msg_perm+0xf1/0x1d0
[  537.159424][T20429]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  537.159448][T20429]  ? __pfx_netlink_sendmsg+0x10/0x10
[  537.159481][T20429]  __sock_sendmsg+0x219/0x270
[  537.159513][T20429]  ____sys_sendmsg+0x505/0x830
[  537.159542][T20429]  ? __pfx_____sys_sendmsg+0x10/0x10
[  537.159581][T20429]  ? import_iovec+0x74/0xa0
[  537.159611][T20429]  ___sys_sendmsg+0x21f/0x2a0
[  537.159637][T20429]  ? __pfx____sys_sendmsg+0x10/0x10
[  537.159710][T20429]  ? __fget_files+0x2a/0x420
[  537.159742][T20429]  ? __fget_files+0x3a0/0x420
[  537.159786][T20429]  __x64_sys_sendmsg+0x19b/0x260
[  537.159812][T20429]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  537.159847][T20429]  ? __pfx_ksys_write+0x10/0x10
[  537.159874][T20429]  ? rcu_is_watching+0x15/0xb0
[  537.159901][T20429]  ? do_syscall_64+0xbe/0x3b0
[  537.159937][T20429]  do_syscall_64+0xfa/0x3b0
[  537.159966][T20429]  ? lockdep_hardirqs_on+0x9c/0x150
[  537.159995][T20429]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.160017][T20429]  ? clear_bhb_loop+0x60/0xb0
[  537.160044][T20429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  537.160064][T20429] RIP: 0033:0x7fde0bf8ebe9
[  537.160083][T20429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  537.160102][T20429] RSP: 002b:00007fde0ce88038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  537.160124][T20429] RAX: ffffffffffffffda RBX: 00007fde0c1b5fa0 RCX: 00007fde0bf8ebe9
[  537.160140][T20429] RDX: 0000000000000000 RSI: 0000200000000340 RDI: 0000000000000003
[  537.160154][T20429] RBP: 00007fde0ce88090 R08: 0000000000000000 R09: 0000000000000000
[  537.160166][T20429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  537.160178][T20429] R13: 00007fde0c1b6038 R14: 00007fde0c1b5fa0 R15: 00007ffd045c09d8
[  537.160210][T20429]  </TASK>
[  537.746631][T20438] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4679'.
[  538.014146][T20454] netlink: 'syz.0.4681': attribute type 1 has an invalid length.
[  538.032208][T20453] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input63
[  538.707005][T20463] __nla_validate_parse: 3 callbacks suppressed
[  538.707028][T20463] netlink: 248 bytes leftover after parsing attributes in process `syz.2.4682'.
[  538.906866][T20483] FAULT_INJECTION: forcing a failure.
[  538.906866][T20483] name failslab, interval 1, probability 0, space 0, times 0
[  538.959252][T20483] CPU: 0 UID: 0 PID: 20483 Comm: syz.3.4688 Not tainted syzkaller #0 PREEMPT(full) 
[  538.959282][T20483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  538.959296][T20483] Call Trace:
[  538.959305][T20483]  <TASK>
[  538.959315][T20483]  dump_stack_lvl+0x189/0x250
[  538.959347][T20483]  ? __pfx____ratelimit+0x10/0x10
[  538.959377][T20483]  ? __pfx_dump_stack_lvl+0x10/0x10
[  538.959403][T20483]  ? __pfx__printk+0x10/0x10
[  538.959440][T20483]  ? __pfx___might_resched+0x10/0x10
[  538.959466][T20483]  should_fail_ex+0x414/0x560
[  538.959500][T20483]  should_failslab+0xa8/0x100
[  538.959534][T20483]  __kmalloc_cache_node_noprof+0x73/0x3d0
[  538.959565][T20483]  ? __get_vm_area_node+0x13f/0x300
[  538.959599][T20483]  __get_vm_area_node+0x13f/0x300
[  538.959635][T20483]  __vmalloc_node_range_noprof+0x301/0x12f0
[  538.959667][T20483]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  538.959697][T20483]  ? __lock_acquire+0xab9/0xd20
[  538.959766][T20483]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  538.959797][T20483]  ? __might_fault+0xb0/0x130
[  538.959828][T20483]  ? _parse_integer_limit+0x1ae/0x1f0
[  538.959866][T20483]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  538.959894][T20483]  __vmalloc_noprof+0xb1/0xf0
[  538.959925][T20483]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  538.959959][T20483]  bpf_prog_alloc_no_stats+0x4a/0x4b0
[  538.959995][T20483]  bpf_prog_alloc+0x3c/0x1a0
[  538.960028][T20483]  bpf_prog_load+0x735/0x1930
[  538.960073][T20483]  ? __pfx_bpf_prog_load+0x10/0x10
[  538.960129][T20483]  ? bpf_lsm_bpf+0x9/0x20
[  538.960155][T20483]  ? security_bpf+0x7e/0x300
[  538.960187][T20483]  __sys_bpf+0x528/0x870
[  538.960218][T20483]  ? __pfx___sys_bpf+0x10/0x10
[  538.960262][T20483]  ? ksys_write+0x22a/0x250
[  538.960318][T20483]  ? __pfx_ksys_write+0x10/0x10
[  538.960345][T20483]  ? rcu_is_watching+0x15/0xb0
[  538.960376][T20483]  __x64_sys_bpf+0x7c/0x90
[  538.960403][T20483]  do_syscall_64+0xfa/0x3b0
[  538.960432][T20483]  ? lockdep_hardirqs_on+0x9c/0x150
[  538.960462][T20483]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.960483][T20483]  ? clear_bhb_loop+0x60/0xb0
[  538.960509][T20483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  538.960530][T20483] RIP: 0033:0x7f67f8f8ebe9
[  538.960549][T20483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  538.960567][T20483] RSP: 002b:00007f67f9d23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  538.960591][T20483] RAX: ffffffffffffffda RBX: 00007f67f91b5fa0 RCX: 00007f67f8f8ebe9
[  538.960607][T20483] RDX: 0000000000000094 RSI: 00002000000003c0 RDI: 0000000000000005
[  538.960620][T20483] RBP: 00007f67f9d23090 R08: 0000000000000000 R09: 0000000000000000
[  538.960633][T20483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  538.960646][T20483] R13: 00007f67f91b6038 R14: 00007f67f91b5fa0 R15: 00007ffd0b5186d8
[  538.960681][T20483]  </TASK>
[  539.259106][T20483] syz.3.4688: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  539.275719][T20483] CPU: 0 UID: 0 PID: 20483 Comm: syz.3.4688 Not tainted syzkaller #0 PREEMPT(full) 
[  539.275748][T20483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  539.275761][T20483] Call Trace:
[  539.275769][T20483]  <TASK>
[  539.275778][T20483]  dump_stack_lvl+0x189/0x250
[  539.275813][T20483]  ? __pfx_dump_stack_lvl+0x10/0x10
[  539.275840][T20483]  ? __pfx__printk+0x10/0x10
[  539.275870][T20483]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  539.275896][T20483]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  539.275924][T20483]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  539.275952][T20483]  warn_alloc+0x214/0x310
[  539.275991][T20483]  ? __pfx_warn_alloc+0x10/0x10
[  539.276027][T20483]  ? __get_vm_area_node+0x13f/0x300
[  539.276062][T20483]  ? __get_vm_area_node+0x2b5/0x300
[  539.276099][T20483]  __vmalloc_node_range_noprof+0x326/0x12f0
[  539.276131][T20483]  ? __lock_acquire+0xab9/0xd20
[  539.276191][T20483]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  539.276221][T20483]  ? __might_fault+0xb0/0x130
[  539.276252][T20483]  ? _parse_integer_limit+0x1ae/0x1f0
[  539.276291][T20483]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  539.276320][T20483]  __vmalloc_noprof+0xb1/0xf0
[  539.276350][T20483]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  539.276384][T20483]  bpf_prog_alloc_no_stats+0x4a/0x4b0
[  539.276427][T20483]  bpf_prog_alloc+0x3c/0x1a0
[  539.276461][T20483]  bpf_prog_load+0x735/0x1930
[  539.276505][T20483]  ? __pfx_bpf_prog_load+0x10/0x10
[  539.276561][T20483]  ? bpf_lsm_bpf+0x9/0x20
[  539.276588][T20483]  ? security_bpf+0x7e/0x300
[  539.276620][T20483]  __sys_bpf+0x528/0x870
[  539.276651][T20483]  ? __pfx___sys_bpf+0x10/0x10
[  539.276695][T20483]  ? ksys_write+0x22a/0x250
[  539.276727][T20483]  ? __pfx_ksys_write+0x10/0x10
[  539.276752][T20483]  ? rcu_is_watching+0x15/0xb0
[  539.276783][T20483]  __x64_sys_bpf+0x7c/0x90
[  539.276809][T20483]  do_syscall_64+0xfa/0x3b0
[  539.276840][T20483]  ? lockdep_hardirqs_on+0x9c/0x150
[  539.276869][T20483]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.276891][T20483]  ? clear_bhb_loop+0x60/0xb0
[  539.276917][T20483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  539.276938][T20483] RIP: 0033:0x7f67f8f8ebe9
[  539.276957][T20483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  539.276976][T20483] RSP: 002b:00007f67f9d23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  539.276998][T20483] RAX: ffffffffffffffda RBX: 00007f67f91b5fa0 RCX: 00007f67f8f8ebe9
[  539.277014][T20483] RDX: 0000000000000094 RSI: 00002000000003c0 RDI: 0000000000000005
[  539.277028][T20483] RBP: 00007f67f9d23090 R08: 0000000000000000 R09: 0000000000000000
[  539.277041][T20483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  539.277053][T20483] R13: 00007f67f91b6038 R14: 00007f67f91b5fa0 R15: 00007ffd0b5186d8
[  539.277088][T20483]  </TASK>
[  539.277106][T20483] Mem-Info:
[  539.578686][T20483] active_anon:7287 inactive_anon:0 isolated_anon:0
[  539.578686][T20483]  active_file:3545 inactive_file:40018 isolated_file:0
[  539.578686][T20483]  unevictable:768 dirty:345 writeback:0
[  539.578686][T20483]  slab_reclaimable:13120 slab_unreclaimable:144621
[  539.578686][T20483]  mapped:30002 shmem:1482 pagetables:1345
[  539.578686][T20483]  sec_pagetables:0 bounce:0
[  539.578686][T20483]  kernel_misc_reclaimable:0
[  539.578686][T20483]  free:1275793 free_pcp:12507 free_cma:0
[  539.592248][T20490] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4689'.
[  539.648512][T20483] Node 0 active_anon:29248kB inactive_anon:0kB active_file:14180kB inactive_file:159868kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:119808kB dirty:1380kB writeback:0kB shmem:4392kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12860kB pagetables:5252kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  539.784154][T20483] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  539.814694][T20483] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  539.845257][T20483] lowmem_reserve[]: 0 2497 2499 2499 2499
[  539.851195][T20483] Node 0 DMA32 free:1199668kB boost:0kB min:34248kB low:42808kB high:51368kB reserved_highatomic:0KB free_highatomic:0KB active_anon:28904kB inactive_anon:0kB active_file:14180kB inactive_file:158296kB unevictable:1536kB writepending:1380kB present:3129332kB managed:2557476kB mlocked:0kB bounce:0kB free_pcp:36592kB local_pcp:18948kB free_cma:0kB
[  539.957907][T20483] lowmem_reserve[]: 0 0 1 1 1
[  539.962714][T20483] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1572kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  540.070619][T20483] lowmem_reserve[]: 0 0 0 0 0
[  540.075527][T20483] Node 1 Normal free:3888132kB boost:0kB min:55632kB low:69540kB high:83448kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:15008kB local_pcp:6656kB free_cma:0kB
[  540.135113][T20483] lowmem_reserve[]: 0 0 0 0 0
[  540.148517][T20483] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  540.181962][T20483] Node 0 DMA32: 1587*4kB (UM) 856*8kB (UM) 649*16kB (UME) 809*32kB (UM) 117*64kB (UME) 27*128kB (UM) 11*256kB (UME) 2*512kB (UE) 1*1024kB (E) 2*2048kB (UE) 276*4096kB (M) = 1199868kB
[  540.205594][T20483] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  540.223535][T20483] Node 1 Normal: 209*4kB (UME) 56*8kB (UME) 48*16kB (UME) 174*32kB (UME) 65*64kB (UME) 12*128kB (UME) 4*256kB (UME) 4*512kB (UM) 3*1024kB (UME) 1*2048kB (E) 944*4096kB (M) = 3888132kB
[  540.246995][T20483] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  540.284724][T20483] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  540.301570][T20483] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  540.331937][T20483] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  540.361721][T20483] 45041 total pagecache pages
[  540.376692][T20483] 0 pages in swap cache
[  540.388853][T20483] Free swap  = 124996kB
[  540.393110][T20483] Total swap = 124996kB
[  540.415694][T20483] 2097051 pages RAM
[  540.424587][T20483] 0 pages HighMem/MovableOnly
[  540.429642][T20483] 425656 pages reserved
[  540.433964][T20483] 0 pages cma reserved
[  540.472150][T20522] macvlan2: entered allmulticast mode
[  540.489143][T20522] veth1_vlan: entered allmulticast mode
[  540.496904][T20522] veth1_vlan: left allmulticast mode
[  540.610113][T20519] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input64
[  541.024625][T20542] gretap1: entered promiscuous mode
[  541.077702][T20542] gretap1: entered allmulticast mode
[  541.296499][T20542] syzkaller0: entered promiscuous mode
[  541.308678][T20542] syzkaller0: entered allmulticast mode
[  541.508503][T20562] FAULT_INJECTION: forcing a failure.
[  541.508503][T20562] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  541.527420][T20562] CPU: 1 UID: 0 PID: 20562 Comm: syz.2.4710 Not tainted syzkaller #0 PREEMPT(full) 
[  541.527451][T20562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  541.527464][T20562] Call Trace:
[  541.527473][T20562]  <TASK>
[  541.527482][T20562]  dump_stack_lvl+0x189/0x250
[  541.527515][T20562]  ? __pfx____ratelimit+0x10/0x10
[  541.527545][T20562]  ? __pfx_dump_stack_lvl+0x10/0x10
[  541.527571][T20562]  ? __pfx__printk+0x10/0x10
[  541.527615][T20562]  should_fail_ex+0x414/0x560
[  541.527648][T20562]  _copy_to_user+0x31/0xb0
[  541.527676][T20562]  simple_read_from_buffer+0xe1/0x170
[  541.527712][T20562]  proc_fail_nth_read+0x1b3/0x220
[  541.527740][T20562]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  541.527768][T20562]  ? rw_verify_area+0x2a6/0x4d0
[  541.527794][T20562]  ? __lock_acquire+0xab9/0xd20
[  541.527822][T20562]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  541.527848][T20562]  vfs_read+0x200/0xa30
[  541.527874][T20562]  ? fdget_pos+0x247/0x320
[  541.527898][T20562]  ? __pfx___mutex_lock+0x10/0x10
[  541.527929][T20562]  ? __pfx_vfs_read+0x10/0x10
[  541.527958][T20562]  ? __fget_files+0x2a/0x420
[  541.527995][T20562]  ? __fget_files+0x3a0/0x420
[  541.528025][T20562]  ? __fget_files+0x2a/0x420
[  541.528068][T20562]  ksys_read+0x145/0x250
[  541.528098][T20562]  ? __pfx_ksys_read+0x10/0x10
[  541.528123][T20562]  ? rcu_is_watching+0x15/0xb0
[  541.528150][T20562]  ? do_syscall_64+0xbe/0x3b0
[  541.528186][T20562]  do_syscall_64+0xfa/0x3b0
[  541.528214][T20562]  ? lockdep_hardirqs_on+0x9c/0x150
[  541.528252][T20562]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.528273][T20562]  ? clear_bhb_loop+0x60/0xb0
[  541.528299][T20562]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.528320][T20562] RIP: 0033:0x7f842698d5fc
[  541.528340][T20562] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  541.528357][T20562] RSP: 002b:00007f84277e6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  541.528378][T20562] RAX: ffffffffffffffda RBX: 00007f8426bb5fa0 RCX: 00007f842698d5fc
[  541.528394][T20562] RDX: 000000000000000f RSI: 00007f84277e60a0 RDI: 0000000000000004
[  541.528406][T20562] RBP: 00007f84277e6090 R08: 0000000000000000 R09: 0000000000000000
[  541.528419][T20562] R10: 0000000004000001 R11: 0000000000000246 R12: 0000000000000001
[  541.528432][T20562] R13: 00007f8426bb6038 R14: 00007f8426bb5fa0 R15: 00007fff10c5b9e8
[  541.528467][T20562]  </TASK>
[  541.815872][T20563] FAULT_INJECTION: forcing a failure.
[  541.815872][T20563] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  541.844833][T20563] CPU: 0 UID: 0 PID: 20563 Comm: syz.1.4709 Not tainted syzkaller #0 PREEMPT(full) 
[  541.844862][T20563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  541.844876][T20563] Call Trace:
[  541.844884][T20563]  <TASK>
[  541.844893][T20563]  dump_stack_lvl+0x189/0x250
[  541.844924][T20563]  ? __pfx____ratelimit+0x10/0x10
[  541.844954][T20563]  ? __pfx_dump_stack_lvl+0x10/0x10
[  541.844980][T20563]  ? __pfx__printk+0x10/0x10
[  541.845024][T20563]  should_fail_ex+0x414/0x560
[  541.845057][T20563]  _copy_to_user+0x31/0xb0
[  541.845092][T20563]  simple_read_from_buffer+0xe1/0x170
[  541.845129][T20563]  proc_fail_nth_read+0x1b3/0x220
[  541.845157][T20563]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  541.845184][T20563]  ? rw_verify_area+0x2a6/0x4d0
[  541.845210][T20563]  ? __lock_acquire+0xab9/0xd20
[  541.845244][T20563]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  541.845270][T20563]  vfs_read+0x200/0xa30
[  541.845296][T20563]  ? fdget_pos+0x247/0x320
[  541.845320][T20563]  ? __pfx___mutex_lock+0x10/0x10
[  541.845351][T20563]  ? __pfx_vfs_read+0x10/0x10
[  541.845380][T20563]  ? __fget_files+0x2a/0x420
[  541.845416][T20563]  ? __fget_files+0x3a0/0x420
[  541.845447][T20563]  ? __fget_files+0x2a/0x420
[  541.845490][T20563]  ksys_read+0x145/0x250
[  541.845521][T20563]  ? __pfx_ksys_read+0x10/0x10
[  541.845554][T20563]  ? do_syscall_64+0xbe/0x3b0
[  541.845595][T20563]  do_syscall_64+0xfa/0x3b0
[  541.845624][T20563]  ? lockdep_hardirqs_on+0x9c/0x150
[  541.845652][T20563]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.845673][T20563]  ? clear_bhb_loop+0x60/0xb0
[  541.845708][T20563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.845728][T20563] RIP: 0033:0x7fde0bf8d5fc
[  541.845747][T20563] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  541.845765][T20563] RSP: 002b:00007fde0ce88030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  541.845784][T20563] RAX: ffffffffffffffda RBX: 00007fde0c1b5fa0 RCX: 00007fde0bf8d5fc
[  541.845798][T20563] RDX: 000000000000000f RSI: 00007fde0ce880a0 RDI: 0000000000000007
[  541.845810][T20563] RBP: 00007fde0ce88090 R08: 0000000000000000 R09: 0000000000000000
[  541.845822][T20563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  541.845834][T20563] R13: 00007fde0c1b6038 R14: 00007fde0c1b5fa0 R15: 00007ffd045c09d8
[  541.845866][T20563]  </TASK>
[  542.104349][T20567] trusted_key: syz.0.4711 sent an empty control message without MSG_MORE.
[  542.356247][T20579] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input65
[  542.398870][T20583] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4714'.
[  542.457269][T20587] netlink: 40 bytes leftover after parsing attributes in process `syz.3.4714'.
[  542.973521][T20572] FAULT_INJECTION: forcing a failure.
[  542.973521][T20572] name fail_futex, interval 1, probability 0, space 0, times 1
[  542.988177][T20572] CPU: 1 UID: 0 PID: 20572 Comm: syz.2.4712 Not tainted syzkaller #0 PREEMPT(full) 
[  542.988208][T20572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  542.988222][T20572] Call Trace:
[  542.988231][T20572]  <TASK>
[  542.988240][T20572]  dump_stack_lvl+0x189/0x250
[  542.988272][T20572]  ? __pfx____ratelimit+0x10/0x10
[  542.988301][T20572]  ? __pfx_dump_stack_lvl+0x10/0x10
[  542.988327][T20572]  ? __pfx__printk+0x10/0x10
[  542.988365][T20572]  ? do_raw_spin_lock+0x121/0x290
[  542.988398][T20572]  should_fail_ex+0x414/0x560
[  542.988432][T20572]  get_futex_key+0x1a8/0x1660
[  542.988457][T20572]  ? look_up_lock_class+0x74/0x170
[  542.988497][T20572]  ? __pfx_get_futex_key+0x10/0x10
[  542.988520][T20572]  ? __lock_acquire+0xab9/0xd20
[  542.988565][T20572]  futex_wake+0xf8/0x560
[  542.988595][T20572]  ? __pfx___mutex_trylock_common+0x10/0x10
[  542.988623][T20572]  ? __pfx_futex_wake+0x10/0x10
[  542.988657][T20572]  ? __lock_acquire+0xab9/0xd20
[  542.988701][T20572]  do_futex+0x395/0x420
[  542.988735][T20572]  ? __pfx_do_futex+0x10/0x10
[  542.988766][T20572]  ? __might_fault+0xb0/0x130
[  542.988799][T20572]  mm_release+0x188/0x390
[  542.988821][T20572]  ? __pfx_mm_release+0x10/0x10
[  542.988842][T20572]  ? lockdep_hardirqs_on+0x9c/0x150
[  542.988885][T20572]  exit_mm+0xa8/0x2c0
[  542.988915][T20572]  ? __pfx_exit_mm+0x10/0x10
[  542.988946][T20572]  ? rcu_is_watching+0x15/0xb0
[  542.988973][T20572]  do_exit+0x648/0x2300
[  542.989008][T20572]  ? do_raw_spin_lock+0x121/0x290
[  542.989043][T20572]  ? __pfx_do_exit+0x10/0x10
[  542.989090][T20572]  do_group_exit+0x21c/0x2d0
[  542.989125][T20572]  ? lockdep_hardirqs_on+0x9c/0x150
[  542.989157][T20572]  get_signal+0x1286/0x1340
[  542.989202][T20572]  arch_do_signal_or_restart+0x9a/0x750
[  542.989238][T20572]  ? __x64_sys_recvmsg+0x22d/0x260
[  542.989266][T20572]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  542.989318][T20572]  ? exit_to_user_mode_loop+0x40/0x110
[  542.989353][T20572]  exit_to_user_mode_loop+0x75/0x110
[  542.989384][T20572]  do_syscall_64+0x2bd/0x3b0
[  542.989414][T20572]  ? lockdep_hardirqs_on+0x9c/0x150
[  542.989442][T20572]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.989463][T20572]  ? clear_bhb_loop+0x60/0xb0
[  542.989489][T20572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  542.989509][T20572] RIP: 0033:0x7f842698ebe9
[  542.989528][T20572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  542.989547][T20572] RSP: 002b:00007f84277c5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  542.989569][T20572] RAX: fffffffffffffe00 RBX: 00007f8426bb6090 RCX: 00007f842698ebe9
[  542.989584][T20572] RDX: 0000000000000100 RSI: 0000200000000040 RDI: 0000000000000003
[  542.989598][T20572] RBP: 00007f84277c5090 R08: 0000000000000000 R09: 0000000000000000
[  542.989611][T20572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  542.989623][T20572] R13: 00007f8426bb6128 R14: 00007f8426bb6090 R15: 00007fff10c5b9e8
[  542.989657][T20572]  </TASK>
[  543.317917][T20578] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  544.417969][T20567] netlink: 84 bytes leftover after parsing attributes in process `syz.0.4711'.
[  544.427209][T20567] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4711'.
[  544.436225][T20567] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4711'.
[  544.446799][T20575] netlink: 60 bytes leftover after parsing attributes in process `syz.2.4712'.
[  544.921554][T20627] FAULT_INJECTION: forcing a failure.
[  544.921554][T20627] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  544.958645][T20627] CPU: 1 UID: 0 PID: 20627 Comm: syz.2.4722 Not tainted syzkaller #0 PREEMPT(full) 
[  544.958674][T20627] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  544.958686][T20627] Call Trace:
[  544.958695][T20627]  <TASK>
[  544.958705][T20627]  dump_stack_lvl+0x189/0x250
[  544.958736][T20627]  ? __pfx____ratelimit+0x10/0x10
[  544.958764][T20627]  ? __pfx_dump_stack_lvl+0x10/0x10
[  544.958788][T20627]  ? __pfx__printk+0x10/0x10
[  544.958830][T20627]  should_fail_ex+0x414/0x560
[  544.958862][T20627]  _copy_from_user+0x2d/0xb0
[  544.958886][T20627]  sctp_setsockopt+0x19f/0x1200
[  544.958924][T20627]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  544.958954][T20627]  do_sock_setsockopt+0x179/0x1b0
[  544.958978][T20627]  __x64_sys_setsockopt+0x13f/0x1b0
[  544.959006][T20627]  do_syscall_64+0xfa/0x3b0
[  544.959035][T20627]  ? lockdep_hardirqs_on+0x9c/0x150
[  544.959063][T20627]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.959083][T20627]  ? clear_bhb_loop+0x60/0xb0
[  544.959107][T20627]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  544.959127][T20627] RIP: 0033:0x7f842698ebe9
[  544.959145][T20627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  544.959163][T20627] RSP: 002b:00007f84277e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  544.959185][T20627] RAX: ffffffffffffffda RBX: 00007f8426bb5fa0 RCX: 00007f842698ebe9
[  544.959200][T20627] RDX: 0000000000000018 RSI: 0000000000000084 RDI: 0000000000000003
[  544.959212][T20627] RBP: 00007f84277e6090 R08: 0000000000000008 R09: 0000000000000000
[  544.959224][T20627] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000001
[  544.959237][T20627] R13: 00007f8426bb6038 R14: 00007f8426bb5fa0 R15: 00007fff10c5b9e8
[  544.959270][T20627]  </TASK>
[  545.202162][T20632] netlink: 248 bytes leftover after parsing attributes in process `syz.4.4724'.
[  545.439363][T20645] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4728'.
[  545.574509][T20645] FAULT_INJECTION: forcing a failure.
[  545.574509][T20645] name failslab, interval 1, probability 0, space 0, times 0
[  545.626188][T20645] CPU: 0 UID: 0 PID: 20645 Comm: syz.3.4728 Not tainted syzkaller #0 PREEMPT(full) 
[  545.626218][T20645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  545.626231][T20645] Call Trace:
[  545.626240][T20645]  <TASK>
[  545.626249][T20645]  dump_stack_lvl+0x189/0x250
[  545.626281][T20645]  ? __pfx____ratelimit+0x10/0x10
[  545.626310][T20645]  ? __pfx_dump_stack_lvl+0x10/0x10
[  545.626337][T20645]  ? __pfx__printk+0x10/0x10
[  545.626373][T20645]  ? __pfx___might_resched+0x10/0x10
[  545.626399][T20645]  should_fail_ex+0x414/0x560
[  545.626438][T20645]  should_failslab+0xa8/0x100
[  545.626472][T20645]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  545.626501][T20645]  ? __alloc_skb+0x112/0x2d0
[  545.626543][T20645]  __alloc_skb+0x112/0x2d0
[  545.626580][T20645]  netlink_sendmsg+0x5c6/0xb30
[  545.626624][T20645]  ? __pfx_netlink_sendmsg+0x10/0x10
[  545.626659][T20645]  ? aa_sock_msg_perm+0xf1/0x1d0
[  545.626695][T20645]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  545.626717][T20645]  ? __pfx_netlink_sendmsg+0x10/0x10
[  545.626750][T20645]  __sock_sendmsg+0x219/0x270
[  545.626781][T20645]  ____sys_sendmsg+0x52d/0x830
[  545.626810][T20645]  ? __pfx_____sys_sendmsg+0x10/0x10
[  545.626842][T20645]  ? import_iovec+0x74/0xa0
[  545.626871][T20645]  ___sys_sendmsg+0x21f/0x2a0
[  545.626896][T20645]  ? __pfx____sys_sendmsg+0x10/0x10
[  545.626959][T20645]  ? __fget_files+0x2a/0x420
[  545.626991][T20645]  ? __fget_files+0x3a0/0x420
[  545.627035][T20645]  __sys_sendmmsg+0x227/0x430
[  545.627063][T20645]  ? __pfx___sys_sendmmsg+0x10/0x10
[  545.627082][T20645]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  545.627148][T20645]  ? ksys_write+0x22a/0x250
[  545.627178][T20645]  ? __pfx_ksys_write+0x10/0x10
[  545.627203][T20645]  ? rcu_is_watching+0x15/0xb0
[  545.627230][T20645]  __x64_sys_sendmmsg+0xa0/0xc0
[  545.627255][T20645]  do_syscall_64+0xfa/0x3b0
[  545.627284][T20645]  ? lockdep_hardirqs_on+0x9c/0x150
[  545.627313][T20645]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.627334][T20645]  ? clear_bhb_loop+0x60/0xb0
[  545.627360][T20645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  545.627380][T20645] RIP: 0033:0x7f67f8f8ebe9
[  545.627399][T20645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  545.627418][T20645] RSP: 002b:00007f67f9d23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  545.627441][T20645] RAX: ffffffffffffffda RBX: 00007f67f91b5fa0 RCX: 00007f67f8f8ebe9
[  545.627456][T20645] RDX: 0000000004924b68 RSI: 0000200000000140 RDI: 0000000000000006
[  545.627470][T20645] RBP: 00007f67f9d23090 R08: 0000000000000000 R09: 0000000000000000
[  545.627483][T20645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  545.627495][T20645] R13: 00007f67f91b6038 R14: 00007f67f91b5fa0 R15: 00007ffd0b5186d8
[  545.627529][T20645]  </TASK>
[  546.605868][T20685] netlink: 1752 bytes leftover after parsing attributes in process `syz.4.4741'.
[  546.820703][T20702] FAULT_INJECTION: forcing a failure.
[  546.820703][T20702] name failslab, interval 1, probability 0, space 0, times 0
[  546.878070][T20702] CPU: 0 UID: 0 PID: 20702 Comm: syz.2.4747 Not tainted syzkaller #0 PREEMPT(full) 
[  546.878099][T20702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  546.878113][T20702] Call Trace:
[  546.878122][T20702]  <TASK>
[  546.878131][T20702]  dump_stack_lvl+0x189/0x250
[  546.878162][T20702]  ? __pfx____ratelimit+0x10/0x10
[  546.878191][T20702]  ? __pfx_dump_stack_lvl+0x10/0x10
[  546.878217][T20702]  ? __pfx__printk+0x10/0x10
[  546.878253][T20702]  ? __pfx___might_resched+0x10/0x10
[  546.878278][T20702]  should_fail_ex+0x414/0x560
[  546.878312][T20702]  should_failslab+0xa8/0x100
[  546.878345][T20702]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  546.878375][T20702]  ? __alloc_skb+0x112/0x2d0
[  546.878410][T20702]  __alloc_skb+0x112/0x2d0
[  546.878447][T20702]  netlink_sendmsg+0x5c6/0xb30
[  546.878490][T20702]  ? __pfx_netlink_sendmsg+0x10/0x10
[  546.878526][T20702]  ? aa_sock_msg_perm+0xf1/0x1d0
[  546.878560][T20702]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  546.878584][T20702]  ? __pfx_netlink_sendmsg+0x10/0x10
[  546.878616][T20702]  __sock_sendmsg+0x219/0x270
[  546.878646][T20702]  ____sys_sendmsg+0x505/0x830
[  546.878674][T20702]  ? __pfx_____sys_sendmsg+0x10/0x10
[  546.878707][T20702]  ? import_iovec+0x74/0xa0
[  546.878735][T20702]  ___sys_sendmsg+0x21f/0x2a0
[  546.878768][T20702]  ? __pfx____sys_sendmsg+0x10/0x10
[  546.878830][T20702]  ? __fget_files+0x2a/0x420
[  546.878861][T20702]  ? __fget_files+0x3a0/0x420
[  546.878905][T20702]  __x64_sys_sendmsg+0x19b/0x260
[  546.878930][T20702]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  546.878963][T20702]  ? __pfx_ksys_write+0x10/0x10
[  546.878988][T20702]  ? rcu_is_watching+0x15/0xb0
[  546.879016][T20702]  ? do_syscall_64+0xbe/0x3b0
[  546.879050][T20702]  do_syscall_64+0xfa/0x3b0
[  546.879079][T20702]  ? lockdep_hardirqs_on+0x9c/0x150
[  546.879108][T20702]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  546.879128][T20702]  ? clear_bhb_loop+0x60/0xb0
[  546.879153][T20702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  546.879173][T20702] RIP: 0033:0x7f842698ebe9
[  546.879191][T20702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  546.879210][T20702] RSP: 002b:00007f84277e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  546.879232][T20702] RAX: ffffffffffffffda RBX: 00007f8426bb5fa0 RCX: 00007f842698ebe9
[  546.879247][T20702] RDX: 0000000000000010 RSI: 0000200000000400 RDI: 0000000000000003
[  546.879261][T20702] RBP: 00007f84277e6090 R08: 0000000000000000 R09: 0000000000000000
[  546.879274][T20702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  546.879286][T20702] R13: 00007f8426bb6038 R14: 00007f8426bb5fa0 R15: 00007fff10c5b9e8
[  546.879320][T20702]  </TASK>
[  547.418667][T20718] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4754'.
[  547.476416][T20724] FAULT_INJECTION: forcing a failure.
[  547.476416][T20724] name failslab, interval 1, probability 0, space 0, times 0
[  547.511217][T20726] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4755'.
[  547.520539][T20724] CPU: 0 UID: 0 PID: 20724 Comm: syz.3.4756 Not tainted syzkaller #0 PREEMPT(full) 
[  547.520570][T20724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  547.520583][T20724] Call Trace:
[  547.520592][T20724]  <TASK>
[  547.520601][T20724]  dump_stack_lvl+0x189/0x250
[  547.520632][T20724]  ? __pfx____ratelimit+0x10/0x10
[  547.520663][T20724]  ? __pfx_dump_stack_lvl+0x10/0x10
[  547.520697][T20724]  ? __pfx__printk+0x10/0x10
[  547.520734][T20724]  ? __pfx___might_resched+0x10/0x10
[  547.520759][T20724]  should_fail_ex+0x414/0x560
[  547.520793][T20724]  should_failslab+0xa8/0x100
[  547.520825][T20724]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  547.520855][T20724]  ? __alloc_skb+0x112/0x2d0
[  547.520891][T20724]  __alloc_skb+0x112/0x2d0
[  547.520928][T20724]  netlink_sendmsg+0x5c6/0xb30
[  547.520971][T20724]  ? __pfx_netlink_sendmsg+0x10/0x10
[  547.521006][T20724]  ? aa_sock_msg_perm+0xf1/0x1d0
[  547.521041][T20724]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  547.521064][T20724]  ? __pfx_netlink_sendmsg+0x10/0x10
[  547.521097][T20724]  __sock_sendmsg+0x219/0x270
[  547.521128][T20724]  ____sys_sendmsg+0x505/0x830
[  547.521156][T20724]  ? __pfx_____sys_sendmsg+0x10/0x10
[  547.521188][T20724]  ? import_iovec+0x74/0xa0
[  547.521217][T20724]  ___sys_sendmsg+0x21f/0x2a0
[  547.521241][T20724]  ? __pfx____sys_sendmsg+0x10/0x10
[  547.521303][T20724]  ? __fget_files+0x2a/0x420
[  547.521334][T20724]  ? __fget_files+0x3a0/0x420
[  547.521378][T20724]  __x64_sys_sendmsg+0x19b/0x260
[  547.521403][T20724]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  547.521436][T20724]  ? __pfx_ksys_write+0x10/0x10
[  547.521462][T20724]  ? rcu_is_watching+0x15/0xb0
[  547.521489][T20724]  ? do_syscall_64+0xbe/0x3b0
[  547.521525][T20724]  do_syscall_64+0xfa/0x3b0
[  547.521554][T20724]  ? lockdep_hardirqs_on+0x9c/0x150
[  547.521582][T20724]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.521604][T20724]  ? clear_bhb_loop+0x60/0xb0
[  547.521629][T20724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  547.521650][T20724] RIP: 0033:0x7f67f8f8ebe9
[  547.521669][T20724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  547.521695][T20724] RSP: 002b:00007f67f9d23038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  547.521718][T20724] RAX: ffffffffffffffda RBX: 00007f67f91b5fa0 RCX: 00007f67f8f8ebe9
[  547.521733][T20724] RDX: 0000000004000800 RSI: 0000200000000000 RDI: 0000000000000003
[  547.521747][T20724] RBP: 00007f67f9d23090 R08: 0000000000000000 R09: 0000000000000000
[  547.521759][T20724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  547.521772][T20724] R13: 00007f67f91b6038 R14: 00007f67f91b5fa0 R15: 00007ffd0b5186d8
[  547.521804][T20724]  </TASK>
[  547.524024][T20726] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4755'.
[  548.016548][T20744] FAULT_INJECTION: forcing a failure.
[  548.016548][T20744] name failslab, interval 1, probability 0, space 0, times 0
[  548.059577][T20744] CPU: 0 UID: 0 PID: 20744 Comm: syz.3.4759 Not tainted syzkaller #0 PREEMPT(full) 
[  548.059609][T20744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  548.059623][T20744] Call Trace:
[  548.059631][T20744]  <TASK>
[  548.059653][T20744]  dump_stack_lvl+0x189/0x250
[  548.059686][T20744]  ? __pfx____ratelimit+0x10/0x10
[  548.059717][T20744]  ? __pfx_dump_stack_lvl+0x10/0x10
[  548.059743][T20744]  ? __pfx__printk+0x10/0x10
[  548.059781][T20744]  ? __pfx___might_resched+0x10/0x10
[  548.059807][T20744]  should_fail_ex+0x414/0x560
[  548.059841][T20744]  should_failslab+0xa8/0x100
[  548.059875][T20744]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  548.059906][T20744]  ? __alloc_skb+0x112/0x2d0
[  548.059943][T20744]  __alloc_skb+0x112/0x2d0
[  548.059980][T20744]  netlink_sendmsg+0x5c6/0xb30
[  548.060025][T20744]  ? __pfx_netlink_sendmsg+0x10/0x10
[  548.060061][T20744]  ? aa_sock_msg_perm+0xf1/0x1d0
[  548.060096][T20744]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  548.060119][T20744]  ? __pfx_netlink_sendmsg+0x10/0x10
[  548.060153][T20744]  __sock_sendmsg+0x219/0x270
[  548.060184][T20744]  ____sys_sendmsg+0x505/0x830
[  548.060211][T20744]  ? __pfx_____sys_sendmsg+0x10/0x10
[  548.060244][T20744]  ? import_iovec+0x74/0xa0
[  548.060273][T20744]  ___sys_sendmsg+0x21f/0x2a0
[  548.060297][T20744]  ? __pfx____sys_sendmsg+0x10/0x10
[  548.060362][T20744]  ? __fget_files+0x2a/0x420
[  548.060393][T20744]  ? __fget_files+0x3a0/0x420
[  548.060436][T20744]  __x64_sys_sendmsg+0x19b/0x260
[  548.060461][T20744]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  548.060496][T20744]  ? __pfx_ksys_write+0x10/0x10
[  548.060521][T20744]  ? rcu_is_watching+0x15/0xb0
[  548.060549][T20744]  ? do_syscall_64+0xbe/0x3b0
[  548.060585][T20744]  do_syscall_64+0xfa/0x3b0
[  548.060615][T20744]  ? lockdep_hardirqs_on+0x9c/0x150
[  548.060652][T20744]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.060673][T20744]  ? clear_bhb_loop+0x60/0xb0
[  548.060700][T20744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.060721][T20744] RIP: 0033:0x7f67f8f8ebe9
[  548.060740][T20744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  548.060759][T20744] RSP: 002b:00007f67f9d23038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  548.060781][T20744] RAX: ffffffffffffffda RBX: 00007f67f91b5fa0 RCX: 00007f67f8f8ebe9
[  548.060796][T20744] RDX: 0000000020008080 RSI: 0000200000000c80 RDI: 0000000000000004
[  548.060810][T20744] RBP: 00007f67f9d23090 R08: 0000000000000000 R09: 0000000000000000
[  548.060823][T20744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  548.060836][T20744] R13: 00007f67f91b6038 R14: 00007f67f91b5fa0 R15: 00007ffd0b5186d8
[  548.060870][T20744]  </TASK>
[  548.589882][T20755] FAULT_INJECTION: forcing a failure.
[  548.589882][T20755] name failslab, interval 1, probability 0, space 0, times 0
[  548.603148][T20755] CPU: 0 UID: 0 PID: 20755 Comm: syz.3.4764 Not tainted syzkaller #0 PREEMPT(full) 
[  548.603177][T20755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  548.603190][T20755] Call Trace:
[  548.603199][T20755]  <TASK>
[  548.603208][T20755]  dump_stack_lvl+0x189/0x250
[  548.603240][T20755]  ? __pfx____ratelimit+0x10/0x10
[  548.603269][T20755]  ? __pfx_dump_stack_lvl+0x10/0x10
[  548.603295][T20755]  ? __pfx__printk+0x10/0x10
[  548.603332][T20755]  ? __pfx___might_resched+0x10/0x10
[  548.603350][T20755]  ? fs_reclaim_acquire+0x7d/0x100
[  548.603396][T20755]  should_fail_ex+0x414/0x560
[  548.603429][T20755]  should_failslab+0xa8/0x100
[  548.603462][T20755]  __kmalloc_noprof+0xcb/0x4f0
[  548.603490][T20755]  ? bpf_test_init+0xc2/0x170
[  548.603524][T20755]  bpf_test_init+0xc2/0x170
[  548.603558][T20755]  bpf_prog_test_run_xdp+0x37c/0x1000
[  548.603607][T20755]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  548.603646][T20755]  ? __fget_files+0x2a/0x420
[  548.603692][T20755]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  548.603725][T20755]  bpf_prog_test_run+0x2c7/0x340
[  548.603760][T20755]  __sys_bpf+0x581/0x870
[  548.603790][T20755]  ? __pfx___sys_bpf+0x10/0x10
[  548.603833][T20755]  ? ksys_write+0x22a/0x250
[  548.603865][T20755]  ? __pfx_ksys_write+0x10/0x10
[  548.603889][T20755]  ? rcu_is_watching+0x15/0xb0
[  548.603919][T20755]  __x64_sys_bpf+0x7c/0x90
[  548.603941][T20755]  do_syscall_64+0xfa/0x3b0
[  548.603970][T20755]  ? lockdep_hardirqs_on+0x9c/0x150
[  548.603999][T20755]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.604019][T20755]  ? clear_bhb_loop+0x60/0xb0
[  548.604046][T20755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  548.604066][T20755] RIP: 0033:0x7f67f8f8ebe9
[  548.604085][T20755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  548.604104][T20755] RSP: 002b:00007f67f9d23038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  548.604127][T20755] RAX: ffffffffffffffda RBX: 00007f67f91b5fa0 RCX: 00007f67f8f8ebe9
[  548.604143][T20755] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  548.604157][T20755] RBP: 00007f67f9d23090 R08: 0000000000000000 R09: 0000000000000000
[  548.604170][T20755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  548.604181][T20755] R13: 00007f67f91b6038 R14: 00007f67f91b5fa0 R15: 00007ffd0b5186d8
[  548.604214][T20755]  </TASK>
[  549.305773][T20788] FAULT_INJECTION: forcing a failure.
[  549.305773][T20788] name failslab, interval 1, probability 0, space 0, times 0
[  549.337531][T20788] CPU: 1 UID: 0 PID: 20788 Comm: syz.1.4775 Not tainted syzkaller #0 PREEMPT(full) 
[  549.337684][T20788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  549.337699][T20788] Call Trace:
[  549.337708][T20788]  <TASK>
[  549.337717][T20788]  dump_stack_lvl+0x189/0x250
[  549.337748][T20788]  ? __pfx____ratelimit+0x10/0x10
[  549.337778][T20788]  ? __pfx_dump_stack_lvl+0x10/0x10
[  549.337804][T20788]  ? __pfx__printk+0x10/0x10
[  549.337842][T20788]  ? __pfx___might_resched+0x10/0x10
[  549.337868][T20788]  should_fail_ex+0x414/0x560
[  549.337902][T20788]  should_failslab+0xa8/0x100
[  549.337934][T20788]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  549.337964][T20788]  ? __alloc_skb+0x112/0x2d0
[  549.338000][T20788]  __alloc_skb+0x112/0x2d0
[  549.338036][T20788]  netlink_sendmsg+0x5c6/0xb30
[  549.338077][T20788]  ? __pfx_netlink_sendmsg+0x10/0x10
[  549.338111][T20788]  ? aa_sock_msg_perm+0xf1/0x1d0
[  549.338145][T20788]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  549.338167][T20788]  ? __pfx_netlink_sendmsg+0x10/0x10
[  549.338199][T20788]  __sock_sendmsg+0x219/0x270
[  549.338227][T20788]  ____sys_sendmsg+0x505/0x830
[  549.338254][T20788]  ? __pfx_____sys_sendmsg+0x10/0x10
[  549.338284][T20788]  ? import_iovec+0x74/0xa0
[  549.338313][T20788]  ___sys_sendmsg+0x21f/0x2a0
[  549.338338][T20788]  ? __pfx____sys_sendmsg+0x10/0x10
[  549.338401][T20788]  ? __fget_files+0x2a/0x420
[  549.338432][T20788]  ? __fget_files+0x3a0/0x420
[  549.338473][T20788]  __x64_sys_sendmsg+0x19b/0x260
[  549.338499][T20788]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  549.338533][T20788]  ? __pfx_ksys_write+0x10/0x10
[  549.338632][T20788]  ? rcu_is_watching+0x15/0xb0
[  549.338661][T20788]  ? do_syscall_64+0xbe/0x3b0
[  549.338696][T20788]  do_syscall_64+0xfa/0x3b0
[  549.338726][T20788]  ? lockdep_hardirqs_on+0x9c/0x150
[  549.338754][T20788]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.338775][T20788]  ? clear_bhb_loop+0x60/0xb0
[  549.338801][T20788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.338822][T20788] RIP: 0033:0x7fde0bf8ebe9
[  549.338842][T20788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  549.338860][T20788] RSP: 002b:00007fde0ce88038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  549.338882][T20788] RAX: ffffffffffffffda RBX: 00007fde0c1b5fa0 RCX: 00007fde0bf8ebe9
[  549.338897][T20788] RDX: 0000000020008080 RSI: 0000200000000c80 RDI: 0000000000000004
[  549.338911][T20788] RBP: 00007fde0ce88090 R08: 0000000000000000 R09: 0000000000000000
[  549.338924][T20788] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  549.338936][T20788] R13: 00007fde0c1b6038 R14: 00007fde0c1b5fa0 R15: 00007ffd045c09d8
[  549.338970][T20788]  </TASK>
[  549.345496][T20791] FAULT_INJECTION: forcing a failure.
[  549.345496][T20791] name failslab, interval 1, probability 0, space 0, times 0
[  549.634560][T20799] __nla_validate_parse: 4 callbacks suppressed
[  549.634582][T20799] netlink: 324 bytes leftover after parsing attributes in process `syz.4.4772'.
[  549.647373][T20791] CPU: 0 UID: 0 PID: 20791 Comm: syz.2.4776 Not tainted syzkaller #0 PREEMPT(full) 
[  549.647409][T20791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  549.647425][T20791] Call Trace:
[  549.647435][T20791]  <TASK>
[  549.647445][T20791]  dump_stack_lvl+0x189/0x250
[  549.647482][T20791]  ? __pfx____ratelimit+0x10/0x10
[  549.647517][T20791]  ? __pfx_dump_stack_lvl+0x10/0x10
[  549.647547][T20791]  ? __pfx__printk+0x10/0x10
[  549.647585][T20791]  ? __pfx___might_resched+0x10/0x10
[  549.647608][T20791]  ? fs_reclaim_acquire+0x7d/0x100
[  549.647653][T20791]  should_fail_ex+0x414/0x560
[  549.647694][T20791]  should_failslab+0xa8/0x100
[  549.647732][T20791]  __kmalloc_noprof+0xcb/0x4f0
[  549.647765][T20791]  ? tomoyo_encode+0x28b/0x550
[  549.647794][T20791]  tomoyo_encode+0x28b/0x550
[  549.647825][T20791]  tomoyo_realpath_from_path+0x58d/0x5d0
[  549.647864][T20791]  ? tomoyo_domain+0xd9/0x130
[  549.647896][T20791]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  549.647931][T20791]  tomoyo_path_number_perm+0x1e8/0x5a0
[  549.647969][T20791]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  549.648027][T20791]  ? __lock_acquire+0xab9/0xd20
[  549.648088][T20791]  ? __fget_files+0x2a/0x420
[  549.648130][T20791]  ? __fget_files+0x2a/0x420
[  549.648165][T20791]  ? __fget_files+0x3a0/0x420
[  549.648200][T20791]  ? __fget_files+0x2a/0x420
[  549.648243][T20791]  security_file_ioctl+0xcb/0x2d0
[  549.648278][T20791]  __se_sys_ioctl+0x47/0x170
[  549.648315][T20791]  do_syscall_64+0xfa/0x3b0
[  549.648352][T20791]  ? lockdep_hardirqs_on+0x9c/0x150
[  549.648385][T20791]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.648410][T20791]  ? clear_bhb_loop+0x60/0xb0
[  549.648439][T20791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  549.648462][T20791] RIP: 0033:0x7f842698ebe9
[  549.648485][T20791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  549.648506][T20791] RSP: 002b:00007f84277e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  549.648532][T20791] RAX: ffffffffffffffda RBX: 00007f8426bb5fa0 RCX: 00007f842698ebe9
[  549.648550][T20791] RDX: 0000200000000180 RSI: 00000000000089e0 RDI: 0000000000000004
[  549.648567][T20791] RBP: 00007f84277e6090 R08: 0000000000000000 R09: 0000000000000000
[  549.648581][T20791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  549.648594][T20791] R13: 00007f8426bb6038 R14: 00007f8426bb5fa0 R15: 00007fff10c5b9e8
[  549.648635][T20791]  </TASK>
[  549.648665][T20791] ERROR: Out of memory at tomoyo_realpath_from_path.
[  549.702015][T20799] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4772'.
[  549.852166][T20801] pimreg: entered allmulticast mode
[  549.920164][T20799] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4772'.
[  550.144048][T20801] pimreg: left allmulticast mode
[  550.194485][T20813] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.4781'.
[  550.471449][T20829] netlink: 'syz.4.4785': attribute type 4 has an invalid length.
[  550.505202][T20830] dummy0: entered promiscuous mode
[  550.549666][T20830] dummy0: left promiscuous mode
[  550.557397][T20832] netlink: 152 bytes leftover after parsing attributes in process `syz.4.4785'.
[  550.566589][T20832] block nbd0: not configured, cannot reconfigure
[  550.744083][T20839] netlink: 'syz.2.4789': attribute type 10 has an invalid length.
[  550.782502][T20839] batman_adv: batadv0: Removing interface: dummy0
[  550.810734][T20841] netlink: 'syz.0.4790': attribute type 10 has an invalid length.
[  550.851137][T20839] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  551.032417][T20856] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4793'.
[  551.171005][T20860] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.4794'.
[  551.421479][T20872] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4798'.
[  551.919928][T20885] FAULT_INJECTION: forcing a failure.
[  551.919928][T20885] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  551.947302][T20885] CPU: 0 UID: 0 PID: 20885 Comm: syz.4.4801 Not tainted syzkaller #0 PREEMPT(full) 
[  551.947340][T20885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  551.947354][T20885] Call Trace:
[  551.947363][T20885]  <TASK>
[  551.947372][T20885]  dump_stack_lvl+0x189/0x250
[  551.947404][T20885]  ? __pfx____ratelimit+0x10/0x10
[  551.947435][T20885]  ? __pfx_dump_stack_lvl+0x10/0x10
[  551.947461][T20885]  ? __pfx__printk+0x10/0x10
[  551.947506][T20885]  should_fail_ex+0x414/0x560
[  551.947541][T20885]  _copy_to_user+0x31/0xb0
[  551.947569][T20885]  simple_read_from_buffer+0xe1/0x170
[  551.947606][T20885]  proc_fail_nth_read+0x1b3/0x220
[  551.947636][T20885]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  551.947664][T20885]  ? rw_verify_area+0x2a6/0x4d0
[  551.947690][T20885]  ? __lock_acquire+0xab9/0xd20
[  551.947720][T20885]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  551.947746][T20885]  vfs_read+0x200/0xa30
[  551.947773][T20885]  ? fdget_pos+0x247/0x320
[  551.947796][T20885]  ? __pfx___mutex_lock+0x10/0x10
[  551.947829][T20885]  ? __pfx_vfs_read+0x10/0x10
[  551.947859][T20885]  ? __fget_files+0x2a/0x420
[  551.947897][T20885]  ? __fget_files+0x3a0/0x420
[  551.947928][T20885]  ? __fget_files+0x2a/0x420
[  551.947972][T20885]  ksys_read+0x145/0x250
[  551.948004][T20885]  ? __pfx_ksys_read+0x10/0x10
[  551.948029][T20885]  ? rcu_is_watching+0x15/0xb0
[  551.948057][T20885]  ? do_syscall_64+0xbe/0x3b0
[  551.948094][T20885]  do_syscall_64+0xfa/0x3b0
[  551.948123][T20885]  ? lockdep_hardirqs_on+0x9c/0x150
[  551.948153][T20885]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.948174][T20885]  ? clear_bhb_loop+0x60/0xb0
[  551.948201][T20885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  551.948222][T20885] RIP: 0033:0x7f7d55b8d5fc
[  551.948241][T20885] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  551.948259][T20885] RSP: 002b:00007f7d53df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  551.948282][T20885] RAX: ffffffffffffffda RBX: 00007f7d55db5fa0 RCX: 00007f7d55b8d5fc
[  551.948298][T20885] RDX: 000000000000000f RSI: 00007f7d53df60a0 RDI: 0000000000000005
[  551.948317][T20885] RBP: 00007f7d53df6090 R08: 0000000000000000 R09: 0000000000000000
[  551.948330][T20885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  551.948343][T20885] R13: 00007f7d55db6038 R14: 00007f7d55db5fa0 R15: 00007ffcd4086cf8
[  551.948378][T20885]  </TASK>
[  552.626735][T20902] FAULT_INJECTION: forcing a failure.
[  552.626735][T20902] name failslab, interval 1, probability 0, space 0, times 0
[  552.657904][T20902] CPU: 1 UID: 0 PID: 20902 Comm: syz.0.4805 Not tainted syzkaller #0 PREEMPT(full) 
[  552.657935][T20902] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  552.657948][T20902] Call Trace:
[  552.657956][T20902]  <TASK>
[  552.657966][T20902]  dump_stack_lvl+0x189/0x250
[  552.657997][T20902]  ? __pfx____ratelimit+0x10/0x10
[  552.658028][T20902]  ? __pfx_dump_stack_lvl+0x10/0x10
[  552.658054][T20902]  ? __pfx__printk+0x10/0x10
[  552.658091][T20902]  ? __pfx___might_resched+0x10/0x10
[  552.658118][T20902]  should_fail_ex+0x414/0x560
[  552.658151][T20902]  should_failslab+0xa8/0x100
[  552.658184][T20902]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  552.658215][T20902]  ? __alloc_skb+0x112/0x2d0
[  552.658253][T20902]  __alloc_skb+0x112/0x2d0
[  552.658289][T20902]  netlink_sendmsg+0x5c6/0xb30
[  552.658334][T20902]  ? __pfx_netlink_sendmsg+0x10/0x10
[  552.658370][T20902]  ? aa_sock_msg_perm+0xf1/0x1d0
[  552.658406][T20902]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  552.658429][T20902]  ? __pfx_netlink_sendmsg+0x10/0x10
[  552.658462][T20902]  __sock_sendmsg+0x219/0x270
[  552.658495][T20902]  ____sys_sendmsg+0x505/0x830
[  552.658532][T20902]  ? __pfx_____sys_sendmsg+0x10/0x10
[  552.658566][T20902]  ? import_iovec+0x74/0xa0
[  552.658594][T20902]  ___sys_sendmsg+0x21f/0x2a0
[  552.658620][T20902]  ? __pfx____sys_sendmsg+0x10/0x10
[  552.658683][T20902]  ? __fget_files+0x2a/0x420
[  552.658715][T20902]  ? __fget_files+0x3a0/0x420
[  552.658760][T20902]  __x64_sys_sendmsg+0x19b/0x260
[  552.658786][T20902]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  552.658820][T20902]  ? __pfx_ksys_write+0x10/0x10
[  552.658847][T20902]  ? rcu_is_watching+0x15/0xb0
[  552.658874][T20902]  ? do_syscall_64+0xbe/0x3b0
[  552.658910][T20902]  do_syscall_64+0xfa/0x3b0
[  552.658939][T20902]  ? lockdep_hardirqs_on+0x9c/0x150
[  552.658969][T20902]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.658990][T20902]  ? clear_bhb_loop+0x60/0xb0
[  552.659017][T20902]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  552.659038][T20902] RIP: 0033:0x7fea2858ebe9
[  552.659058][T20902] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  552.659076][T20902] RSP: 002b:00007fea29497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  552.659121][T20902] RAX: ffffffffffffffda RBX: 00007fea287b5fa0 RCX: 00007fea2858ebe9
[  552.659137][T20902] RDX: 0000000000048054 RSI: 0000200000000200 RDI: 0000000000000004
[  552.659151][T20902] RBP: 00007fea29497090 R08: 0000000000000000 R09: 0000000000000000
[  552.659164][T20902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  552.659177][T20902] R13: 00007fea287b6038 R14: 00007fea287b5fa0 R15: 00007ffce044d788
[  552.659211][T20902]  </TASK>
[  553.078942][T20908] netlink: 'syz.3.4807': attribute type 10 has an invalid length.
[  553.177431][T20908] veth0_vlan: left promiscuous mode
[  553.184039][T20908] veth0_vlan: entered promiscuous mode
[  553.256377][T20908] team0: Device veth0_vlan failed to register rx_handler
[  553.342575][T20927] netlink: 59 bytes leftover after parsing attributes in process `syz.2.4810'.
[  553.560917][T20939] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  554.074335][T20959] FAULT_INJECTION: forcing a failure.
[  554.074335][T20959] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  554.104901][T20961] FAULT_INJECTION: forcing a failure.
[  554.104901][T20961] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  554.120150][T20959] CPU: 1 UID: 0 PID: 20959 Comm: syz.4.4820 Not tainted syzkaller #0 PREEMPT(full) 
[  554.120180][T20959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  554.120194][T20959] Call Trace:
[  554.120203][T20959]  <TASK>
[  554.120212][T20959]  dump_stack_lvl+0x189/0x250
[  554.120243][T20959]  ? __pfx____ratelimit+0x10/0x10
[  554.120274][T20959]  ? __pfx_dump_stack_lvl+0x10/0x10
[  554.120300][T20959]  ? __pfx__printk+0x10/0x10
[  554.120342][T20959]  should_fail_ex+0x414/0x560
[  554.120378][T20959]  _copy_to_user+0x31/0xb0
[  554.120415][T20959]  simple_read_from_buffer+0xe1/0x170
[  554.120453][T20959]  proc_fail_nth_read+0x1b3/0x220
[  554.120480][T20959]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  554.120508][T20959]  ? rw_verify_area+0x2a6/0x4d0
[  554.120533][T20959]  ? __lock_acquire+0xab9/0xd20
[  554.120562][T20959]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  554.120588][T20959]  vfs_read+0x200/0xa30
[  554.120615][T20959]  ? fdget_pos+0x247/0x320
[  554.120638][T20959]  ? __pfx___mutex_lock+0x10/0x10
[  554.120670][T20959]  ? __pfx_vfs_read+0x10/0x10
[  554.120699][T20959]  ? __fget_files+0x2a/0x420
[  554.120737][T20959]  ? __fget_files+0x3a0/0x420
[  554.120767][T20959]  ? __fget_files+0x2a/0x420
[  554.120810][T20959]  ksys_read+0x145/0x250
[  554.120841][T20959]  ? __pfx_ksys_read+0x10/0x10
[  554.120866][T20959]  ? rcu_is_watching+0x15/0xb0
[  554.120894][T20959]  ? do_syscall_64+0xbe/0x3b0
[  554.120931][T20959]  do_syscall_64+0xfa/0x3b0
[  554.120960][T20959]  ? lockdep_hardirqs_on+0x9c/0x150
[  554.120989][T20959]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.121011][T20959]  ? clear_bhb_loop+0x60/0xb0
[  554.121037][T20959]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.121058][T20959] RIP: 0033:0x7f7d55b8d5fc
[  554.121078][T20959] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  554.121096][T20959] RSP: 002b:00007f7d53df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  554.121118][T20959] RAX: ffffffffffffffda RBX: 00007f7d55db5fa0 RCX: 00007f7d55b8d5fc
[  554.121133][T20959] RDX: 000000000000000f RSI: 00007f7d53df60a0 RDI: 0000000000000003
[  554.121147][T20959] RBP: 00007f7d53df6090 R08: 0000000000000000 R09: 0000000000000000
[  554.121159][T20959] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001
[  554.121172][T20959] R13: 00007f7d55db6038 R14: 00007f7d55db5fa0 R15: 00007ffcd4086cf8
[  554.121207][T20959]  </TASK>
[  554.179306][T20962] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4818'.
[  554.209429][T20961] CPU: 1 UID: 0 PID: 20961 Comm: syz.0.4821 Not tainted syzkaller #0 PREEMPT(full) 
[  554.209464][T20961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  554.209480][T20961] Call Trace:
[  554.209490][T20961]  <TASK>
[  554.209504][T20961]  dump_stack_lvl+0x189/0x250
[  554.209539][T20961]  ? __pfx____ratelimit+0x10/0x10
[  554.209575][T20961]  ? __pfx_dump_stack_lvl+0x10/0x10
[  554.209604][T20961]  ? __pfx__printk+0x10/0x10
[  554.209639][T20961]  ? __might_fault+0xb0/0x130
[  554.209687][T20961]  should_fail_ex+0x414/0x560
[  554.209725][T20961]  _copy_from_iter+0x1db/0x16f0
[  554.209763][T20961]  ? policy_nodemask+0x27c/0x720
[  554.209796][T20961]  ? __pfx__copy_from_iter+0x10/0x10
[  554.209828][T20961]  ? set_page_refcounted+0xa0/0x1e0
[  554.209863][T20961]  ? page_copy_sane+0x4e/0x280
[  554.209890][T20961]  copy_page_from_iter+0xdd/0x170
[  554.209919][T20961]  tun_get_user+0x1d7b/0x3e20
[  554.209953][T20961]  ? tun_get_user+0x6f6/0x3e20
[  554.209985][T20961]  ? aa_file_perm+0x44d/0x1550
[  554.210011][T20961]  ? __pfx_tun_get_user+0x10/0x10
[  554.210032][T20961]  ? _parse_integer_limit+0x1ae/0x1f0
[  554.210080][T20961]  ? __lock_acquire+0xab9/0xd20
[  554.210123][T20961]  ? ref_tracker_alloc+0x318/0x460
[  554.210153][T20961]  ? __lock_acquire+0xab9/0xd20
[  554.210192][T20961]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  554.210232][T20961]  ? tun_get+0x1c/0x2f0
[  554.210261][T20961]  ? tun_get+0x1c/0x2f0
[  554.210282][T20961]  ? tun_get+0x1c/0x2f0
[  554.210310][T20961]  tun_chr_write_iter+0x113/0x200
[  554.210337][T20961]  vfs_write+0x5c9/0xb30
[  554.210375][T20961]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  554.210407][T20961]  ? __pfx_vfs_write+0x10/0x10
[  554.210458][T20961]  ? __fget_files+0x2a/0x420
[  554.210510][T20961]  ksys_write+0x145/0x250
[  554.210546][T20961]  ? __pfx_ksys_write+0x10/0x10
[  554.210574][T20961]  ? rcu_is_watching+0x15/0xb0
[  554.210606][T20961]  ? do_syscall_64+0xbe/0x3b0
[  554.210646][T20961]  do_syscall_64+0xfa/0x3b0
[  554.210681][T20961]  ? lockdep_hardirqs_on+0x9c/0x150
[  554.210714][T20961]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.210738][T20961]  ? clear_bhb_loop+0x60/0xb0
[  554.210767][T20961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.210792][T20961] RIP: 0033:0x7fea2858d69f
[  554.210815][T20961] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  554.210835][T20961] RSP: 002b:00007fea29497000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  554.210861][T20961] RAX: ffffffffffffffda RBX: 00007fea287b5fa0 RCX: 00007fea2858d69f
[  554.210879][T20961] RDX: 0000000000000066 RSI: 00002000000068c0 RDI: 00000000000000c8
[  554.210893][T20961] RBP: 00007fea29497090 R08: 0000000000000000 R09: 0000000000000000
[  554.210909][T20961] R10: 0000000000000066 R11: 0000000000000293 R12: 0000000000000001
[  554.210923][T20961] R13: 00007fea287b6038 R14: 00007fea287b5fa0 R15: 00007ffce044d788
[  554.210962][T20961]  </TASK>
[  554.417356][T20964] FAULT_INJECTION: forcing a failure.
[  554.417356][T20964] name failslab, interval 1, probability 0, space 0, times 0
[  554.849286][T20964] CPU: 1 UID: 0 PID: 20964 Comm: syz.0.4822 Not tainted syzkaller #0 PREEMPT(full) 
[  554.849316][T20964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  554.849330][T20964] Call Trace:
[  554.849345][T20964]  <TASK>
[  554.849355][T20964]  dump_stack_lvl+0x189/0x250
[  554.849394][T20964]  ? __pfx____ratelimit+0x10/0x10
[  554.849423][T20964]  ? __pfx_dump_stack_lvl+0x10/0x10
[  554.849448][T20964]  ? __pfx__printk+0x10/0x10
[  554.849485][T20964]  ? __pfx___might_resched+0x10/0x10
[  554.849511][T20964]  should_fail_ex+0x414/0x560
[  554.849544][T20964]  should_failslab+0xa8/0x100
[  554.849577][T20964]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  554.849608][T20964]  ? __alloc_skb+0x112/0x2d0
[  554.849644][T20964]  __alloc_skb+0x112/0x2d0
[  554.849681][T20964]  netlink_sendmsg+0x5c6/0xb30
[  554.849724][T20964]  ? __pfx_netlink_sendmsg+0x10/0x10
[  554.849760][T20964]  ? aa_sock_msg_perm+0xf1/0x1d0
[  554.849796][T20964]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  554.849820][T20964]  ? __pfx_netlink_sendmsg+0x10/0x10
[  554.849853][T20964]  __sock_sendmsg+0x219/0x270
[  554.849884][T20964]  ____sys_sendmsg+0x505/0x830
[  554.849913][T20964]  ? __pfx_____sys_sendmsg+0x10/0x10
[  554.849946][T20964]  ? import_iovec+0x74/0xa0
[  554.849974][T20964]  ___sys_sendmsg+0x21f/0x2a0
[  554.849999][T20964]  ? __pfx____sys_sendmsg+0x10/0x10
[  554.850064][T20964]  ? __fget_files+0x2a/0x420
[  554.850095][T20964]  ? __fget_files+0x3a0/0x420
[  554.850140][T20964]  __x64_sys_sendmsg+0x19b/0x260
[  554.850165][T20964]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  554.850199][T20964]  ? __pfx_ksys_write+0x10/0x10
[  554.850224][T20964]  ? rcu_is_watching+0x15/0xb0
[  554.850251][T20964]  ? do_syscall_64+0xbe/0x3b0
[  554.850287][T20964]  do_syscall_64+0xfa/0x3b0
[  554.850322][T20964]  ? lockdep_hardirqs_on+0x9c/0x150
[  554.850351][T20964]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.850379][T20964]  ? clear_bhb_loop+0x60/0xb0
[  554.850403][T20964]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.850422][T20964] RIP: 0033:0x7fea2858ebe9
[  554.850439][T20964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  554.850455][T20964] RSP: 002b:00007fea29497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  554.850476][T20964] RAX: ffffffffffffffda RBX: 00007fea287b5fa0 RCX: 00007fea2858ebe9
[  554.850490][T20964] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000003
[  554.850503][T20964] RBP: 00007fea29497090 R08: 0000000000000000 R09: 0000000000000000
[  554.850516][T20964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  554.850528][T20964] R13: 00007fea287b6038 R14: 00007fea287b5fa0 R15: 00007ffce044d788
[  554.850561][T20964]  </TASK>
[  555.677902][T21004] FAULT_INJECTION: forcing a failure.
[  555.677902][T21004] name failslab, interval 1, probability 0, space 0, times 0
[  555.708773][T21006] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4828'.
[  555.767976][T21004] CPU: 1 UID: 0 PID: 21004 Comm: syz.4.4827 Not tainted syzkaller #0 PREEMPT(full) 
[  555.768007][T21004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  555.768020][T21004] Call Trace:
[  555.768029][T21004]  <TASK>
[  555.768039][T21004]  dump_stack_lvl+0x189/0x250
[  555.768070][T21004]  ? __pfx____ratelimit+0x10/0x10
[  555.768101][T21004]  ? __pfx_dump_stack_lvl+0x10/0x10
[  555.768126][T21004]  ? __pfx__printk+0x10/0x10
[  555.768163][T21004]  ? __pfx___might_resched+0x10/0x10
[  555.768189][T21004]  should_fail_ex+0x414/0x560
[  555.768223][T21004]  should_failslab+0xa8/0x100
[  555.768256][T21004]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  555.768293][T21004]  ? __alloc_skb+0x112/0x2d0
[  555.768331][T21004]  __alloc_skb+0x112/0x2d0
[  555.768369][T21004]  netlink_sendmsg+0x5c6/0xb30
[  555.768412][T21004]  ? __pfx_netlink_sendmsg+0x10/0x10
[  555.768448][T21004]  ? aa_sock_msg_perm+0xf1/0x1d0
[  555.768483][T21004]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  555.768506][T21004]  ? __pfx_netlink_sendmsg+0x10/0x10
[  555.768539][T21004]  __sock_sendmsg+0x219/0x270
[  555.768571][T21004]  ____sys_sendmsg+0x505/0x830
[  555.768600][T21004]  ? __pfx_____sys_sendmsg+0x10/0x10
[  555.768633][T21004]  ? import_iovec+0x74/0xa0
[  555.768662][T21004]  ___sys_sendmsg+0x21f/0x2a0
[  555.768687][T21004]  ? __pfx____sys_sendmsg+0x10/0x10
[  555.768751][T21004]  ? __fget_files+0x2a/0x420
[  555.768783][T21004]  ? __fget_files+0x3a0/0x420
[  555.768825][T21004]  __x64_sys_sendmsg+0x19b/0x260
[  555.768852][T21004]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  555.768886][T21004]  ? __pfx_ksys_write+0x10/0x10
[  555.768911][T21004]  ? rcu_is_watching+0x15/0xb0
[  555.768939][T21004]  ? do_syscall_64+0xbe/0x3b0
[  555.768980][T21004]  do_syscall_64+0xfa/0x3b0
[  555.769009][T21004]  ? lockdep_hardirqs_on+0x9c/0x150
[  555.769038][T21004]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.769060][T21004]  ? clear_bhb_loop+0x60/0xb0
[  555.769086][T21004]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.769107][T21004] RIP: 0033:0x7f7d55b8ebe9
[  555.769126][T21004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  555.769144][T21004] RSP: 002b:00007f7d53df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  555.769166][T21004] RAX: ffffffffffffffda RBX: 00007f7d55db5fa0 RCX: 00007f7d55b8ebe9
[  555.769181][T21004] RDX: 0000000000000000 RSI: 0000200000000480 RDI: 0000000000000003
[  555.769194][T21004] RBP: 00007f7d53df6090 R08: 0000000000000000 R09: 0000000000000000
[  555.769207][T21004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  555.769219][T21004] R13: 00007f7d55db6038 R14: 00007f7d55db5fa0 R15: 00007ffcd4086cf8
[  555.769253][T21004]  </TASK>
[  556.372908][T21022] FAULT_INJECTION: forcing a failure.
[  556.372908][T21022] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  556.418273][T21022] CPU: 1 UID: 0 PID: 21022 Comm: syz.4.4834 Not tainted syzkaller #0 PREEMPT(full) 
[  556.418303][T21022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  556.418316][T21022] Call Trace:
[  556.418325][T21022]  <TASK>
[  556.418335][T21022]  dump_stack_lvl+0x189/0x250
[  556.418365][T21022]  ? __pfx____ratelimit+0x10/0x10
[  556.418396][T21022]  ? __pfx_dump_stack_lvl+0x10/0x10
[  556.418422][T21022]  ? __pfx__printk+0x10/0x10
[  556.418467][T21022]  should_fail_ex+0x414/0x560
[  556.418502][T21022]  _copy_to_user+0x31/0xb0
[  556.418529][T21022]  simple_read_from_buffer+0xe1/0x170
[  556.418589][T21022]  proc_fail_nth_read+0x1b3/0x220
[  556.418618][T21022]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  556.418646][T21022]  ? rw_verify_area+0x2a6/0x4d0
[  556.418672][T21022]  ? __lock_acquire+0xab9/0xd20
[  556.418701][T21022]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  556.418728][T21022]  vfs_read+0x200/0xa30
[  556.418774][T21022]  ? fdget_pos+0x247/0x320
[  556.418799][T21022]  ? __pfx___mutex_lock+0x10/0x10
[  556.418832][T21022]  ? __pfx_vfs_read+0x10/0x10
[  556.418862][T21022]  ? __fget_files+0x2a/0x420
[  556.418900][T21022]  ? __fget_files+0x3a0/0x420
[  556.418932][T21022]  ? __fget_files+0x2a/0x420
[  556.418979][T21022]  ksys_read+0x145/0x250
[  556.419011][T21022]  ? __pfx_ksys_read+0x10/0x10
[  556.419036][T21022]  ? rcu_is_watching+0x15/0xb0
[  556.419065][T21022]  ? do_syscall_64+0xbe/0x3b0
[  556.419101][T21022]  do_syscall_64+0xfa/0x3b0
[  556.419130][T21022]  ? lockdep_hardirqs_on+0x9c/0x150
[  556.419165][T21022]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.419187][T21022]  ? clear_bhb_loop+0x60/0xb0
[  556.419213][T21022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.419235][T21022] RIP: 0033:0x7f7d55b8d5fc
[  556.419254][T21022] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  556.419285][T21022] RSP: 002b:00007f7d53df6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  556.419308][T21022] RAX: ffffffffffffffda RBX: 00007f7d55db5fa0 RCX: 00007f7d55b8d5fc
[  556.419324][T21022] RDX: 000000000000000f RSI: 00007f7d53df60a0 RDI: 0000000000000004
[  556.419337][T21022] RBP: 00007f7d53df6090 R08: 0000000000000000 R09: 0000000000000000
[  556.419350][T21022] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[  556.419363][T21022] R13: 00007f7d55db6038 R14: 00007f7d55db5fa0 R15: 00007ffcd4086cf8
[  556.419398][T21022]  </TASK>
[  556.967788][T21042] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4839'.
[  557.098935][T21050] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4842'.
[  557.459309][T21055] pimreg: entered allmulticast mode
[  557.921396][T21069] netlink: 'syz.1.4844': attribute type 7 has an invalid length.
[  558.128591][T21075] only policy match revision 0 supported
[  558.128615][T21075] unable to load match
[  558.783275][T21098] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  558.809092][T21100] netlink: 56 bytes leftover after parsing attributes in process `syz.2.4851'.
[  558.863599][T21103] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  559.455786][T21129] netlink: 48 bytes leftover after parsing attributes in process `syz.3.4856'.
[  559.469020][T21128] netlink: set zone limit has 4 unknown bytes
[  559.732222][T21135] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4860'.
[  559.773286][T21138] netlink: 'syz.2.4859': attribute type 1 has an invalid length.
[  559.833349][T21138] netlink: 224 bytes leftover after parsing attributes in process `syz.2.4859'.
[  560.071938][T21154] FAULT_INJECTION: forcing a failure.
[  560.071938][T21154] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  560.147354][T21154] CPU: 0 UID: 0 PID: 21154 Comm: syz.4.4863 Not tainted syzkaller #0 PREEMPT(full) 
[  560.147384][T21154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  560.147399][T21154] Call Trace:
[  560.147408][T21154]  <TASK>
[  560.147417][T21154]  dump_stack_lvl+0x189/0x250
[  560.147449][T21154]  ? __pfx____ratelimit+0x10/0x10
[  560.147478][T21154]  ? __pfx_dump_stack_lvl+0x10/0x10
[  560.147504][T21154]  ? __pfx__printk+0x10/0x10
[  560.147536][T21154]  ? fs_reclaim_acquire+0x7d/0x100
[  560.147582][T21154]  should_fail_ex+0x414/0x560
[  560.147616][T21154]  prepare_alloc_pages+0x213/0x610
[  560.147646][T21154]  __alloc_frozen_pages_noprof+0x123/0x370
[  560.147673][T21154]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  560.147707][T21154]  ? policy_nodemask+0x27c/0x720
[  560.147735][T21154]  ? __lock_acquire+0xab9/0xd20
[  560.147772][T21154]  alloc_pages_mpol+0x232/0x4a0
[  560.147817][T21154]  vma_alloc_folio_noprof+0xe4/0x200
[  560.147849][T21154]  ? page_table_check_set+0x18d/0x730
[  560.147880][T21154]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  560.147925][T21154]  folio_prealloc+0x30/0x180
[  560.147957][T21154]  __handle_mm_fault+0x2ab9/0x5440
[  560.148004][T21154]  ? __pfx___handle_mm_fault+0x10/0x10
[  560.148049][T21154]  ? follow_page_pte+0x7ef/0x13e0
[  560.148090][T21154]  handle_mm_fault+0x40a/0x8e0
[  560.148131][T21154]  __get_user_pages+0x1699/0x2ce0
[  560.148154][T21154]  ? __lock_acquire+0xab9/0xd20
[  560.148221][T21154]  __gup_longterm_locked+0xde9/0x1660
[  560.148263][T21154]  ? sanity_check_pinned_pages+0x1241/0x1300
[  560.148291][T21154]  ? gup_fast_fallback+0x195f/0x2010
[  560.148323][T21154]  gup_fast_fallback+0x1e6a/0x2010
[  560.148386][T21154]  ? __pfx_gup_fast_fallback+0x10/0x10
[  560.148422][T21154]  ? rcu_is_watching+0x15/0xb0
[  560.148443][T21154]  ? is_valid_gup_args+0x11f/0x200
[  560.148473][T21154]  ? pin_user_pages_fast+0x4d/0xb0
[  560.148502][T21154]  rds_info_getsockopt+0x1fb/0x470
[  560.148537][T21154]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  560.148567][T21154]  ? __might_fault+0xb0/0x130
[  560.148600][T21154]  ? rds_getsockopt+0x2b4/0x500
[  560.148619][T21154]  ? __pfx_rds_getsockopt+0x10/0x10
[  560.148642][T21154]  do_sock_getsockopt+0x372/0x450
[  560.148667][T21154]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  560.148688][T21154]  ? write_ibpb+0x30/0x40
[  560.148717][T21154]  ? __fget_files+0x3a0/0x420
[  560.148749][T21154]  ? __fget_files+0x2a/0x420
[  560.148788][T21154]  __x64_sys_getsockopt+0x1a5/0x250
[  560.148822][T21154]  ? write_ibpb+0x30/0x40
[  560.148854][T21154]  ? write_ibpb+0x30/0x40
[  560.148889][T21154]  do_syscall_64+0xfa/0x3b0
[  560.148918][T21154]  ? lockdep_hardirqs_on+0x9c/0x150
[  560.148948][T21154]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.148969][T21154]  ? clear_bhb_loop+0x60/0xb0
[  560.148995][T21154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  560.149016][T21154] RIP: 0033:0x7f7d55b8ebe9
[  560.149035][T21154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  560.149054][T21154] RSP: 002b:00007f7d53df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  560.149076][T21154] RAX: ffffffffffffffda RBX: 00007f7d55db5fa0 RCX: 00007f7d55b8ebe9
[  560.149091][T21154] RDX: 0000000000002711 RSI: 0000200000000114 RDI: 0000000000000003
[  560.149104][T21154] RBP: 00007f7d53df6090 R08: 0000200000000000 R09: 0000000000000000
[  560.149118][T21154] R10: 0000200000c35fff R11: 0000000000000246 R12: 0000000000000001
[  560.149130][T21154] R13: 00007f7d55db6038 R14: 00007f7d55db5fa0 R15: 00007ffcd4086cf8
[  560.149164][T21154]  </TASK>
[  560.598879][T21158] netlink: 'syz.2.4865': attribute type 10 has an invalid length.
[  561.214610][T21189] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4868'.
[  561.554022][T21198] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4873'.
[  562.716129][T21222] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input66
[  563.046292][T21240] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4878'.
[  563.102281][T21238] geneve3: entered promiscuous mode
[  563.122454][T21238] geneve3: entered allmulticast mode
[  563.131239][T21237] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4883'.
[  563.354454][T21249] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input67
[  564.784539][T21284] mac80211_hwsim hwsim27 wlan1: left allmulticast mode
[  564.793495][T21284] gtp6: left promiscuous mode
[  564.807493][T21284] gtp6: left allmulticast mode
[  564.830352][T21284] gtp7: left promiscuous mode
[  564.835131][T21284] gtp7: left allmulticast mode
[  564.880878][T21284] gtp8: left promiscuous mode
[  564.886063][T21284] gtp8: left allmulticast mode
[  564.905510][T21284] gtp9: left promiscuous mode
[  564.917012][T21284] gtp9: left allmulticast mode
[  564.939091][T21284] gtp10: left promiscuous mode
[  564.968116][T21284] gtp10: left allmulticast mode
[  564.997074][T21284] gtp11: left promiscuous mode
[  565.003975][T21284] gtp11: left allmulticast mode
[  565.056153][T21284] gretap1: left promiscuous mode
[  565.063688][T21293] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input68
[  565.086445][T21284] gretap1: left allmulticast mode
[  565.259503][T21303] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4899'.
[  565.463305][T21311] netlink: 'syz.4.4900': attribute type 5 has an invalid length.
[  565.520720][T21313] mac80211_hwsim hwsim29 wlan0: entered promiscuous mode
[  565.553652][T21314] netlink: 324 bytes leftover after parsing attributes in process `syz.3.4897'.
[  565.553652][T21313] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  566.313544][T21342] FAULT_INJECTION: forcing a failure.
[  566.313544][T21342] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  566.351391][T21342] CPU: 0 UID: 0 PID: 21342 Comm: syz.1.4908 Not tainted syzkaller #0 PREEMPT(full) 
[  566.351426][T21342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  566.351441][T21342] Call Trace:
[  566.351451][T21342]  <TASK>
[  566.351462][T21342]  dump_stack_lvl+0x189/0x250
[  566.351496][T21342]  ? __pfx____ratelimit+0x10/0x10
[  566.351531][T21342]  ? __pfx_dump_stack_lvl+0x10/0x10
[  566.351560][T21342]  ? __pfx__printk+0x10/0x10
[  566.351595][T21342]  ? __might_fault+0xb0/0x130
[  566.351644][T21342]  should_fail_ex+0x414/0x560
[  566.351682][T21342]  _copy_from_user+0x2d/0xb0
[  566.351711][T21342]  ____sys_sendmsg+0x2fe/0x830
[  566.351744][T21342]  ? __pfx_____sys_sendmsg+0x10/0x10
[  566.351782][T21342]  ? import_iovec+0x74/0xa0
[  566.351814][T21342]  ___sys_sendmsg+0x21f/0x2a0
[  566.351842][T21342]  ? __pfx____sys_sendmsg+0x10/0x10
[  566.351914][T21342]  ? __fget_files+0x2a/0x420
[  566.351948][T21342]  ? __fget_files+0x3a0/0x420
[  566.351998][T21342]  __sys_sendmmsg+0x227/0x430
[  566.352038][T21342]  ? __pfx___sys_sendmmsg+0x10/0x10
[  566.352061][T21342]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  566.352130][T21342]  ? ksys_write+0x22a/0x250
[  566.352166][T21342]  ? __pfx_ksys_write+0x10/0x10
[  566.352194][T21342]  ? rcu_is_watching+0x15/0xb0
[  566.352228][T21342]  __x64_sys_sendmmsg+0xa0/0xc0
[  566.352256][T21342]  do_syscall_64+0xfa/0x3b0
[  566.352292][T21342]  ? lockdep_hardirqs_on+0x9c/0x150
[  566.352324][T21342]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  566.352353][T21342]  ? clear_bhb_loop+0x60/0xb0
[  566.352383][T21342]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  566.352406][T21342] RIP: 0033:0x7fde0bf8ebe9
[  566.352427][T21342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  566.352447][T21342] RSP: 002b:00007fde0ce88038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  566.352473][T21342] RAX: ffffffffffffffda RBX: 00007fde0c1b5fa0 RCX: 00007fde0bf8ebe9
[  566.352490][T21342] RDX: 0000000000000002 RSI: 0000200000002440 RDI: 0000000000000003
[  566.352506][T21342] RBP: 00007fde0ce88090 R08: 0000000000000000 R09: 0000000000000000
[  566.352521][T21342] R10: 00000000000440c6 R11: 0000000000000246 R12: 0000000000000001
[  566.352536][T21342] R13: 00007fde0c1b6038 R14: 00007fde0c1b5fa0 R15: 00007ffd045c09d8
[  566.352575][T21342]  </TASK>
[  566.862464][T21355] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input69
[  567.553357][T21369] netlink: 'syz.3.4913': attribute type 1 has an invalid length.
[  567.563193][T21369] netlink: 224 bytes leftover after parsing attributes in process `syz.3.4913'.
[  567.677062][T21375] FAULT_INJECTION: forcing a failure.
[  567.677062][T21375] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  567.736230][T21373] tipc: Started in network mode
[  567.737660][T21375] CPU: 0 UID: 0 PID: 21375 Comm: syz.0.4917 Not tainted syzkaller #0 PREEMPT(full) 
[  567.737693][T21375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  567.737707][T21375] Call Trace:
[  567.737718][T21375]  <TASK>
[  567.737727][T21375]  dump_stack_lvl+0x189/0x250
[  567.737784][T21375]  ? __pfx____ratelimit+0x10/0x10
[  567.737821][T21375]  ? __pfx_dump_stack_lvl+0x10/0x10
[  567.737853][T21375]  ? __pfx__printk+0x10/0x10
[  567.737890][T21375]  ? __might_fault+0xb0/0x130
[  567.737937][T21375]  should_fail_ex+0x414/0x560
[  567.737977][T21375]  _copy_from_user+0x2d/0xb0
[  567.738007][T21375]  get_timespec64+0x8e/0x1a0
[  567.738043][T21375]  ? __pfx_get_timespec64+0x10/0x10
[  567.738091][T21375]  __x64_sys_recvmmsg+0x143/0x240
[  567.738124][T21375]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  567.738150][T21375]  ? rcu_is_watching+0x15/0xb0
[  567.738190][T21375]  ? do_syscall_64+0xbe/0x3b0
[  567.738232][T21375]  do_syscall_64+0xfa/0x3b0
[  567.738267][T21375]  ? lockdep_hardirqs_on+0x9c/0x150
[  567.738298][T21375]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.738323][T21375]  ? clear_bhb_loop+0x60/0xb0
[  567.738352][T21375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.738377][T21375] RIP: 0033:0x7fea2858ebe9
[  567.738400][T21375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.738421][T21375] RSP: 002b:00007fea29497038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  567.738447][T21375] RAX: ffffffffffffffda RBX: 00007fea287b5fa0 RCX: 00007fea2858ebe9
[  567.738466][T21375] RDX: 04000000000003b4 RSI: 00002000000037c0 RDI: 0000000000000003
[  567.738483][T21375] RBP: 00007fea29497090 R08: 0000200000003700 R09: 0000000000000000
[  567.738500][T21375] R10: 0000000002040000 R11: 0000000000000246 R12: 0000000000000001
[  567.738514][T21375] R13: 00007fea287b6038 R14: 00007fea287b5fa0 R15: 00007ffce044d788
[  567.738554][T21375]  </TASK>
[  567.904363][T21384] netlink: 'syz.3.4918': attribute type 13 has an invalid length.
[  567.954896][T21384] netlink: 'syz.3.4918': attribute type 17 has an invalid length.
[  567.975136][T21373] tipc: Node identity b6517e871c2f, cluster identity 4711
[  568.012090][T21373] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  568.045942][T21381] syzkaller0: entered promiscuous mode
[  568.072431][T21381] syzkaller0: entered allmulticast mode
[  568.132076][T21392] tipc: Resetting bearer <eth:syzkaller0>
[  568.280366][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  568.395981][T21377] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  568.546159][T21384] 8021q: adding VLAN 0 to HW filter on device bond0
[  568.566983][T21384] 8021q: adding VLAN 0 to HW filter on device team0
[  568.594411][T21384] tipc: Resetting bearer <eth:team0>
[  568.614635][T21384] tipc: Resetting bearer <eth:team0>
[  568.634684][T21384] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  568.728017][T21370] tipc: Resetting bearer <eth:syzkaller0>
[  568.813982][T21370] tipc: Disabling bearer <eth:syzkaller0>
[  569.083458][T21419] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input70
[  569.186292][T21427] netlink: 'syz.0.4928': attribute type 10 has an invalid length.
[  569.234552][T21427] bond0: (slave 
0!
): Enslaving as an active interface with an up link
[  569.683077][T21451] netlink: 1624 bytes leftover after parsing attributes in process `syz.4.4933'.
[  569.884794][T21452] gtp9: entered promiscuous mode
[  569.895023][T21452] gtp9: entered allmulticast mode
[  570.021775][T21462] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4937'.
[  570.033014][T21462] openvswitch: netlink: Flow key attr not present in new flow.
[  570.315333][T21476] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input71
[  571.098166][T21502] netlink: 1624 bytes leftover after parsing attributes in process `syz.3.4949'.
[  571.372175][T21515] FAULT_INJECTION: forcing a failure.
[  571.372175][T21515] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  571.423159][T21515] CPU: 0 UID: 0 PID: 21515 Comm: syz.2.4954 Not tainted syzkaller #0 PREEMPT(full) 
[  571.423191][T21515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  571.423204][T21515] Call Trace:
[  571.423212][T21515]  <TASK>
[  571.423222][T21515]  dump_stack_lvl+0x189/0x250
[  571.423254][T21515]  ? __pfx____ratelimit+0x10/0x10
[  571.423285][T21515]  ? __pfx_dump_stack_lvl+0x10/0x10
[  571.423311][T21515]  ? __pfx__printk+0x10/0x10
[  571.423355][T21515]  should_fail_ex+0x414/0x560
[  571.423389][T21515]  _copy_to_user+0x31/0xb0
[  571.423416][T21515]  simple_read_from_buffer+0xe1/0x170
[  571.423453][T21515]  proc_fail_nth_read+0x1b3/0x220
[  571.423482][T21515]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  571.423510][T21515]  ? rw_verify_area+0x2a6/0x4d0
[  571.423536][T21515]  ? __lock_acquire+0xab9/0xd20
[  571.423565][T21515]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  571.423591][T21515]  vfs_read+0x200/0xa30
[  571.423618][T21515]  ? fdget_pos+0x247/0x320
[  571.423642][T21515]  ? __pfx___mutex_lock+0x10/0x10
[  571.423674][T21515]  ? __pfx_vfs_read+0x10/0x10
[  571.423704][T21515]  ? __fget_files+0x2a/0x420
[  571.423741][T21515]  ? __fget_files+0x3a0/0x420
[  571.423772][T21515]  ? __fget_files+0x2a/0x420
[  571.423815][T21515]  ksys_read+0x145/0x250
[  571.423863][T21515]  ? __pfx_ksys_read+0x10/0x10
[  571.423888][T21515]  ? rcu_is_watching+0x15/0xb0
[  571.423916][T21515]  ? do_syscall_64+0xbe/0x3b0
[  571.423952][T21515]  do_syscall_64+0xfa/0x3b0
[  571.423981][T21515]  ? lockdep_hardirqs_on+0x9c/0x150
[  571.424010][T21515]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  571.424031][T21515]  ? clear_bhb_loop+0x60/0xb0
[  571.424058][T21515]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  571.424078][T21515] RIP: 0033:0x7f842698d5fc
[  571.424098][T21515] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  571.424122][T21515] RSP: 002b:00007f84277e6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  571.424144][T21515] RAX: ffffffffffffffda RBX: 00007f8426bb5fa0 RCX: 00007f842698d5fc
[  571.424160][T21515] RDX: 000000000000000f RSI: 00007f84277e60a0 RDI: 0000000000000005
[  571.424173][T21515] RBP: 00007f84277e6090 R08: 0000000000000000 R09: 0000000000000000
[  571.424185][T21515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  571.424197][T21515] R13: 00007f8426bb6038 R14: 00007f8426bb5fa0 R15: 00007fff10c5b9e8
[  571.424233][T21515]  </TASK>
[  571.903934][T21525] gtp12: entered promiscuous mode
[  571.910569][T21525] gtp12: entered allmulticast mode
[  571.948577][T21529] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input72
[  572.417278][T21552] netlink: 1624 bytes leftover after parsing attributes in process `syz.3.4963'.
[  572.606252][T21551] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4965'.
[  573.347682][T21584] netlink: 'syz.2.4970': attribute type 13 has an invalid length.
[  573.363332][T21584] netlink: 'syz.2.4970': attribute type 17 has an invalid length.
[  573.562350][T21572] gtp10: entered promiscuous mode
[  573.588270][T21572] gtp10: entered allmulticast mode
[  573.808007][T21592] netlink: 'syz.1.4972': attribute type 10 has an invalid length.
[  573.832069][T21596] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  573.925407][T21596] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  573.974323][T21598] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input73
[  574.240675][T21584] 8021q: adding VLAN 0 to HW filter on device bond0
[  574.249401][T21584] 8021q: adding VLAN 0 to HW filter on device team0
[  574.261711][T21584] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  574.467406][T21607] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4975'.
[  574.477573][T21609] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4977'.
[  574.576378][T21609] geneve2: entered allmulticast mode
[  574.623470][ T3536] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  574.638205][ T3536] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  574.667661][ T3485] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  574.703999][ T3485] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  574.946797][T21620] gtp6: entered promiscuous mode
[  574.957510][T21620] gtp6: entered allmulticast mode
[  575.829147][T21660] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input74
[  576.494375][T21678] FAULT_INJECTION: forcing a failure.
[  576.494375][T21678] name failslab, interval 1, probability 0, space 0, times 0
[  576.547447][T21678] CPU: 0 UID: 0 PID: 21678 Comm: syz.0.4994 Not tainted syzkaller #0 PREEMPT(full) 
[  576.547478][T21678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  576.547492][T21678] Call Trace:
[  576.547500][T21678]  <TASK>
[  576.547510][T21678]  dump_stack_lvl+0x189/0x250
[  576.547541][T21678]  ? __pfx____ratelimit+0x10/0x10
[  576.547571][T21678]  ? __pfx_dump_stack_lvl+0x10/0x10
[  576.547597][T21678]  ? __pfx__printk+0x10/0x10
[  576.547633][T21678]  ? __pfx___might_resched+0x10/0x10
[  576.547652][T21678]  ? fs_reclaim_acquire+0x7d/0x100
[  576.547691][T21678]  should_fail_ex+0x414/0x560
[  576.547725][T21678]  should_failslab+0xa8/0x100
[  576.547758][T21678]  __kmalloc_noprof+0xcb/0x4f0
[  576.547787][T21678]  ? copy_splice_read+0x143/0xa50
[  576.547822][T21678]  copy_splice_read+0x143/0xa50
[  576.547866][T21678]  ? __pfx_copy_splice_read+0x10/0x10
[  576.547893][T21678]  ? look_up_lock_class+0x74/0x170
[  576.547925][T21678]  ? register_lock_class+0x51/0x320
[  576.547961][T21678]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  576.547998][T21678]  ? alloc_pipe_info+0x374/0x4d0
[  576.548030][T21678]  ? __pfx_copy_splice_read+0x10/0x10
[  576.548058][T21678]  splice_direct_to_actor+0x4a9/0xcc0
[  576.548112][T21678]  ? __pfx_direct_splice_actor+0x10/0x10
[  576.548143][T21678]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  576.548194][T21678]  do_splice_direct+0x181/0x270
[  576.548227][T21678]  ? __pfx_do_splice_direct+0x10/0x10
[  576.548259][T21678]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  576.548300][T21678]  ? rw_verify_area+0x255/0x4d0
[  576.548332][T21678]  do_sendfile+0x4da/0x7e0
[  576.548363][T21678]  ? __pfx_do_sendfile+0x10/0x10
[  576.548388][T21678]  ? __might_fault+0xb0/0x130
[  576.548426][T21678]  __se_sys_sendfile64+0x13e/0x190
[  576.548464][T21678]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  576.548502][T21678]  ? rcu_is_watching+0x15/0xb0
[  576.548525][T21678]  ? trace_sys_enter+0x25/0x100
[  576.548564][T21678]  do_syscall_64+0xfa/0x3b0
[  576.548594][T21678]  ? lockdep_hardirqs_on+0x9c/0x150
[  576.548622][T21678]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.548643][T21678]  ? clear_bhb_loop+0x60/0xb0
[  576.548669][T21678]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  576.548690][T21678] RIP: 0033:0x7fea2858ebe9
[  576.548709][T21678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  576.548728][T21678] RSP: 002b:00007fea29497038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  576.548750][T21678] RAX: ffffffffffffffda RBX: 00007fea287b5fa0 RCX: 00007fea2858ebe9
[  576.548766][T21678] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000004
[  576.548778][T21678] RBP: 00007fea29497090 R08: 0000000000000000 R09: 0000000000000000
[  576.548791][T21678] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[  576.548804][T21678] R13: 00007fea287b6038 R14: 00007fea287b5fa0 R15: 00007ffce044d788
[  576.548839][T21678]  </TASK>
[  577.375943][T21699] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5006'.
[  578.151058][T21730] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5015'.
[  579.347354][T21791] nbd: illegal input index -1
[  579.360243][T21792] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5035'.
[  579.516006][T21793] nbd: illegal input index -1
[  579.812268][T21811] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5043'.
[  579.829473][T21811] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5043'.
[  579.982213][T21819] FAULT_INJECTION: forcing a failure.
[  579.982213][T21819] name failslab, interval 1, probability 0, space 0, times 0
[  580.036835][T21819] CPU: 1 UID: 0 PID: 21819 Comm: syz.0.5046 Not tainted syzkaller #0 PREEMPT(full) 
[  580.036864][T21819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  580.036877][T21819] Call Trace:
[  580.036885][T21819]  <TASK>
[  580.036894][T21819]  dump_stack_lvl+0x189/0x250
[  580.036926][T21819]  ? __pfx____ratelimit+0x10/0x10
[  580.036957][T21819]  ? __pfx_dump_stack_lvl+0x10/0x10
[  580.036983][T21819]  ? __pfx__printk+0x10/0x10
[  580.037016][T21819]  ? __pfx___might_resched+0x10/0x10
[  580.037037][T21819]  ? fs_reclaim_acquire+0x7d/0x100
[  580.037082][T21819]  should_fail_ex+0x414/0x560
[  580.037131][T21819]  should_failslab+0xa8/0x100
[  580.037163][T21819]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  580.037193][T21819]  ? __alloc_skb+0x112/0x2d0
[  580.037231][T21819]  __alloc_skb+0x112/0x2d0
[  580.037266][T21819]  alloc_skb_with_frags+0xca/0x890
[  580.037295][T21819]  ? ip6_pol_route+0x162/0x1180
[  580.037324][T21819]  sock_alloc_send_pskb+0x857/0x990
[  580.037368][T21819]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  580.037398][T21819]  ? ipv6_dev_get_saddr+0x143/0xb70
[  580.037441][T21819]  __ip6_append_data+0x2b43/0x3f30
[  580.037496][T21819]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  580.037544][T21819]  ? __pfx___ip6_append_data+0x10/0x10
[  580.037569][T21819]  ? __pfx_ip6_mtu+0x10/0x10
[  580.037606][T21819]  ip6_append_data+0x1c4/0x380
[  580.037639][T21819]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  580.037667][T21819]  udpv6_sendmsg+0xab1/0x24b0
[  580.037708][T21819]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  580.037739][T21819]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  580.037772][T21819]  ? __lock_acquire+0xab9/0xd20
[  580.037850][T21819]  ? __local_bh_enable_ip+0x12d/0x1c0
[  580.037873][T21819]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  580.037903][T21819]  ? inet_send_prepare+0x1b9/0x270
[  580.037933][T21819]  ? inet_send_prepare+0x1b9/0x270
[  580.037963][T21819]  ? inet6_sendmsg+0xe4/0x120
[  580.037987][T21819]  __sock_sendmsg+0xe5/0x270
[  580.038018][T21819]  ____sys_sendmsg+0x52d/0x830
[  580.038048][T21819]  ? __pfx_____sys_sendmsg+0x10/0x10
[  580.038094][T21819]  ? import_iovec+0x74/0xa0
[  580.038123][T21819]  ___sys_sendmsg+0x21f/0x2a0
[  580.038148][T21819]  ? __pfx____sys_sendmsg+0x10/0x10
[  580.038212][T21819]  ? __fget_files+0x2a/0x420
[  580.038244][T21819]  ? __fget_files+0x3a0/0x420
[  580.038288][T21819]  __sys_sendmmsg+0x227/0x430
[  580.038317][T21819]  ? __pfx___sys_sendmmsg+0x10/0x10
[  580.038337][T21819]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  580.038400][T21819]  ? ksys_write+0x22a/0x250
[  580.038431][T21819]  ? __pfx_ksys_write+0x10/0x10
[  580.038456][T21819]  ? rcu_is_watching+0x15/0xb0
[  580.038486][T21819]  __x64_sys_sendmmsg+0xa0/0xc0
[  580.038511][T21819]  do_syscall_64+0xfa/0x3b0
[  580.038540][T21819]  ? lockdep_hardirqs_on+0x9c/0x150
[  580.038569][T21819]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.038590][T21819]  ? clear_bhb_loop+0x60/0xb0
[  580.038616][T21819]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.038637][T21819] RIP: 0033:0x7fea2858ebe9
[  580.038656][T21819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.038675][T21819] RSP: 002b:00007fea29497038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  580.038698][T21819] RAX: ffffffffffffffda RBX: 00007fea287b5fa0 RCX: 00007fea2858ebe9
[  580.038714][T21819] RDX: 0000000000000003 RSI: 0000200000007240 RDI: 0000000000000003
[  580.038727][T21819] RBP: 00007fea29497090 R08: 0000000000000000 R09: 0000000000000000
[  580.038740][T21819] R10: 000000000001c000 R11: 0000000000000246 R12: 0000000000000001
[  580.038753][T21819] R13: 00007fea287b6038 R14: 00007fea287b5fa0 R15: 00007ffce044d788
[  580.038788][T21819]  </TASK>
[  580.570070][T21832] gtp11: entered promiscuous mode
[  580.575172][T21832] gtp11: entered allmulticast mode
[  580.853484][T21843] gtp7: entered promiscuous mode
[  580.907325][T21843] gtp7: entered allmulticast mode
[  580.911091][T21855] FAULT_INJECTION: forcing a failure.
[  580.911091][T21855] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  580.956315][T21855] CPU: 1 UID: 0 PID: 21855 Comm: syz.0.5057 Not tainted syzkaller #0 PREEMPT(full) 
[  580.956346][T21855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  580.956360][T21855] Call Trace:
[  580.956370][T21855]  <TASK>
[  580.956379][T21855]  dump_stack_lvl+0x189/0x250
[  580.956411][T21855]  ? __pfx____ratelimit+0x10/0x10
[  580.956449][T21855]  ? __pfx_dump_stack_lvl+0x10/0x10
[  580.956475][T21855]  ? __pfx__printk+0x10/0x10
[  580.956520][T21855]  should_fail_ex+0x414/0x560
[  580.956555][T21855]  _copy_from_user+0x2d/0xb0
[  580.956602][T21855]  get_user_ifreq+0x6c/0x180
[  580.956632][T21855]  sock_ioctl+0x6dd/0x790
[  580.956661][T21855]  ? __pfx_sock_ioctl+0x10/0x10
[  580.956690][T21855]  ? __fget_files+0x3a0/0x420
[  580.956722][T21855]  ? __fget_files+0x2a/0x420
[  580.956771][T21855]  ? bpf_lsm_file_ioctl+0x9/0x20
[  580.956798][T21855]  ? __pfx_sock_ioctl+0x10/0x10
[  580.956824][T21855]  __se_sys_ioctl+0xfc/0x170
[  580.956854][T21855]  do_syscall_64+0xfa/0x3b0
[  580.956884][T21855]  ? lockdep_hardirqs_on+0x9c/0x150
[  580.956913][T21855]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.956934][T21855]  ? clear_bhb_loop+0x60/0xb0
[  580.956961][T21855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  580.956982][T21855] RIP: 0033:0x7fea2858ebe9
[  580.957001][T21855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  580.957021][T21855] RSP: 002b:00007fea29497038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  580.957044][T21855] RAX: ffffffffffffffda RBX: 00007fea287b5fa0 RCX: 00007fea2858ebe9
[  580.957060][T21855] RDX: 0000200000000240 RSI: 00000000000089f3 RDI: 0000000000000004
[  580.957074][T21855] RBP: 00007fea29497090 R08: 0000000000000000 R09: 0000000000000000
[  580.957087][T21855] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  580.957103][T21855] R13: 00007fea287b6038 R14: 00007fea287b5fa0 R15: 00007ffce044d788
[  580.957135][T21855]  </TASK>
[  581.244104][T21861] tipc: Resetting bearer <eth:team0>
[  581.261315][T21861] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5059'.
[  581.373895][T21866] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5061'.
[  581.398366][T21866] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5061'.
[  581.459761][T21866] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5061'.
[  582.013876][T21896] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5073'.
[  582.127076][T21894] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5072'.
[  583.876851][T21970] __nla_validate_parse: 5 callbacks suppressed
[  583.876872][T21970] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5102'.
[  583.902398][T21976] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5104'.
[  584.284520][T21995] netlink: 'syz.3.5112': attribute type 1 has an invalid length.
[  584.341298][T21999] netlink: 'syz.2.5113': attribute type 10 has an invalid length.
[  584.429392][T22004] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5115'.
[  584.618794][T22008] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5116'.
[  584.688187][T21976] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  584.820668][T22022] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5122'.
[  584.840551][T22022] 8021q: VLANs not supported on sit0
[  584.944853][T22032] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5122'.
[  585.542450][T22070] bond0: default FDB implementation only supports local addresses
[  585.569672][T22072] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5144'.
[  585.828183][T22080] netlink: 'syz.4.5148': attribute type 83 has an invalid length.
[  586.023299][T22090] netlink: 'syz.1.5153': attribute type 10 has an invalid length.
[  586.093781][T22092] netlink: 'syz.3.5154': attribute type 1 has an invalid length.
[  586.104601][T22092] netlink: 224 bytes leftover after parsing attributes in process `syz.3.5154'.
[  586.391707][T22106] netlink: 'syz.0.5159': attribute type 1 has an invalid length.
[  586.428592][T22099] sctp: [Deprecated]: syz.3.5157 (pid 22099) Use of int in max_burst socket option.
[  586.428592][T22099] Use struct sctp_assoc_value instead
[  586.476964][T22106] bond0: Error: Cannot enslave bond to itself.
[  586.501126][T22106] bond2: (slave bridge5): making interface the new active one
[  586.510045][T22106] bond2: (slave bridge5): Enslaving as an active interface with an up link
[  586.776463][T22120] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5162'.
[  587.047466][T22134] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5169'.
[  587.153688][T12447] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  587.209421][T22133] sctp: [Deprecated]: syz.2.5168 (pid 22133) Use of int in max_burst socket option.
[  587.209421][T22133] Use struct sctp_assoc_value instead
[  587.215725][T22140] FAULT_INJECTION: forcing a failure.
[  587.215725][T22140] name failslab, interval 1, probability 0, space 0, times 0
[  587.239546][T22140] CPU: 0 UID: 0 PID: 22140 Comm: syz.1.5171 Not tainted syzkaller #0 PREEMPT(full) 
[  587.239576][T22140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  587.239589][T22140] Call Trace:
[  587.239598][T22140]  <TASK>
[  587.239608][T22140]  dump_stack_lvl+0x189/0x250
[  587.239641][T22140]  ? __pfx____ratelimit+0x10/0x10
[  587.239671][T22140]  ? __pfx_dump_stack_lvl+0x10/0x10
[  587.239697][T22140]  ? __pfx__printk+0x10/0x10
[  587.239724][T22140]  ? __local_bh_enable_ip+0x12d/0x1c0
[  587.239757][T22140]  ? sctp_get_port_local+0xe5d/0x1680
[  587.239782][T22140]  should_fail_ex+0x414/0x560
[  587.239817][T22140]  should_failslab+0xa8/0x100
[  587.239850][T22140]  __kmalloc_cache_noprof+0x70/0x3d0
[  587.239881][T22140]  ? sctp_add_bind_addr+0x8c/0x370
[  587.239913][T22140]  sctp_add_bind_addr+0x8c/0x370
[  587.239940][T22140]  ? sctp_auto_asconf_init+0x15c/0x1e0
[  587.239965][T22140]  sctp_do_bind+0x5ab/0x940
[  587.240000][T22140]  sctp_connect_new_asoc+0x25c/0x690
[  587.240025][T22140]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  587.240043][T22140]  ? __local_bh_enable_ip+0x12d/0x1c0
[  587.240073][T22140]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  587.240099][T22140]  ? security_sctp_bind_connect+0x7e/0x2e0
[  587.240134][T22140]  sctp_sendmsg+0x155c/0x2810
[  587.240179][T22140]  ? __pfx_sctp_sendmsg+0x10/0x10
[  587.240222][T22140]  ? aa_sk_perm+0x81e/0x950
[  587.240260][T22140]  ? __pfx_aa_sk_perm+0x10/0x10
[  587.240294][T22140]  ? sock_rps_record_flow+0x19/0x410
[  587.240324][T22140]  ? inet_sendmsg+0x2f4/0x370
[  587.240353][T22140]  __sock_sendmsg+0x19c/0x270
[  587.240384][T22140]  __sys_sendto+0x3bd/0x520
[  587.240421][T22140]  ? __pfx___sys_sendto+0x10/0x10
[  587.240450][T22140]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  587.240499][T22140]  ? __fget_files+0x3a0/0x420
[  587.240544][T22140]  ? ksys_write+0x22a/0x250
[  587.240576][T22140]  ? __pfx_ksys_write+0x10/0x10
[  587.240601][T22140]  ? rcu_is_watching+0x15/0xb0
[  587.240629][T22140]  __x64_sys_sendto+0xde/0x100
[  587.240667][T22140]  do_syscall_64+0xfa/0x3b0
[  587.240696][T22140]  ? lockdep_hardirqs_on+0x9c/0x150
[  587.240724][T22140]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.240746][T22140]  ? clear_bhb_loop+0x60/0xb0
[  587.240772][T22140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.240792][T22140] RIP: 0033:0x7fde0bf8ebe9
[  587.240811][T22140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.240830][T22140] RSP: 002b:00007fde0ce88038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  587.240852][T22140] RAX: ffffffffffffffda RBX: 00007fde0c1b5fa0 RCX: 00007fde0bf8ebe9
[  587.240868][T22140] RDX: 000000000000fee4 RSI: 0000200000847fff RDI: 0000000000000003
[  587.240882][T22140] RBP: 00007fde0ce88090 R08: 000020000005ffe4 R09: 000000000000001c
[  587.240896][T22140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  587.240908][T22140] R13: 00007fde0c1b6038 R14: 00007fde0c1b5fa0 R15: 00007ffd045c09d8
[  587.240944][T22140]  </TASK>
[  587.541200][ T3536] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  587.768067][T22150] gtp12: entered promiscuous mode
[  587.781799][T22150] gtp12: entered allmulticast mode
[  587.887493][T12447] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  588.391005][T22181] netlink: 'syz.2.5185': attribute type 5 has an invalid length.
[  588.666030][ T1147] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  588.678458][ T1147] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  588.719292][ T9630] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  588.811341][T22204] FAULT_INJECTION: forcing a failure.
[  588.811341][T22204] name failslab, interval 1, probability 0, space 0, times 0
[  588.854333][T22204] CPU: 1 UID: 0 PID: 22204 Comm: syz.2.5193 Not tainted syzkaller #0 PREEMPT(full) 
[  588.854364][T22204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  588.854376][T22204] Call Trace:
[  588.854384][T22204]  <TASK>
[  588.854392][T22204]  dump_stack_lvl+0x189/0x250
[  588.854423][T22204]  ? __pfx____ratelimit+0x10/0x10
[  588.854453][T22204]  ? __pfx_dump_stack_lvl+0x10/0x10
[  588.854479][T22204]  ? __pfx__printk+0x10/0x10
[  588.854514][T22204]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  588.854563][T22204]  ? lockdep_hardirqs_on+0x9c/0x150
[  588.854597][T22204]  should_fail_ex+0x414/0x560
[  588.854629][T22204]  should_failslab+0xa8/0x100
[  588.854664][T22204]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  588.854695][T22204]  ? __alloc_skb+0x112/0x2d0
[  588.854731][T22204]  __alloc_skb+0x112/0x2d0
[  588.854766][T22204]  create_monitor_ctrl_open+0x156/0x880
[  588.854793][T22204]  ? __pfx_create_monitor_ctrl_open+0x10/0x10
[  588.854811][T22204]  ? bpf_lsm_capable+0x9/0x20
[  588.854849][T22204]  hci_sock_ioctl+0x2f2/0x910
[  588.854884][T22204]  sock_do_ioctl+0xdc/0x300
[  588.854911][T22204]  ? __pfx_sock_do_ioctl+0x10/0x10
[  588.854932][T22204]  ? __lock_acquire+0xab9/0xd20
[  588.854976][T22204]  sock_ioctl+0x576/0x790
[  588.855000][T22204]  ? __pfx_sock_ioctl+0x10/0x10
[  588.855025][T22204]  ? __fget_files+0x2a/0x420
[  588.855052][T22204]  ? __fget_files+0x3a0/0x420
[  588.855079][T22204]  ? __fget_files+0x2a/0x420
[  588.855110][T22204]  ? bpf_lsm_file_ioctl+0x9/0x20
[  588.855134][T22204]  ? __pfx_sock_ioctl+0x10/0x10
[  588.855159][T22204]  __se_sys_ioctl+0xfc/0x170
[  588.855186][T22204]  do_syscall_64+0xfa/0x3b0
[  588.855210][T22204]  ? lockdep_hardirqs_on+0x9c/0x150
[  588.855234][T22204]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.855250][T22204]  ? clear_bhb_loop+0x60/0xb0
[  588.855282][T22204]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  588.855302][T22204] RIP: 0033:0x7f842698ebe9
[  588.855327][T22204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  588.855346][T22204] RSP: 002b:00007f84277e6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  588.855368][T22204] RAX: ffffffffffffffda RBX: 00007f8426bb5fa0 RCX: 00007f842698ebe9
[  588.855383][T22204] RDX: 0000000000000000 RSI: 00000000400448ca RDI: 000000000000000b
[  588.855396][T22204] RBP: 00007f84277e6090 R08: 0000000000000000 R09: 0000000000000000
[  588.855409][T22204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  588.855422][T22204] R13: 00007f8426bb6038 R14: 00007f8426bb5fa0 R15: 00007fff10c5b9e8
[  588.855455][T22204]  </TASK>
[  589.526969][T22224] sctp: [Deprecated]: syz.1.5197 (pid 22224) Use of int in max_burst socket option.
[  589.526969][T22224] Use struct sctp_assoc_value instead
[  589.735748][T22231] FAULT_INJECTION: forcing a failure.
[  589.735748][T22231] name failslab, interval 1, probability 0, space 0, times 0
[  589.775237][T22233] __nla_validate_parse: 2 callbacks suppressed
[  589.775260][T22233] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5202'.
[  589.783518][T22231] CPU: 0 UID: 0 PID: 22231 Comm: syz.0.5201 Not tainted syzkaller #0 PREEMPT(full) 
[  589.783553][T22231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  589.783567][T22231] Call Trace:
[  589.783578][T22231]  <TASK>
[  589.783589][T22231]  dump_stack_lvl+0x189/0x250
[  589.783625][T22231]  ? __pfx____ratelimit+0x10/0x10
[  589.783661][T22231]  ? __pfx_dump_stack_lvl+0x10/0x10
[  589.783690][T22231]  ? __pfx__printk+0x10/0x10
[  589.783732][T22231]  ? __pfx___might_resched+0x10/0x10
[  589.783763][T22231]  should_fail_ex+0x414/0x560
[  589.783801][T22231]  should_failslab+0xa8/0x100
[  589.783839][T22231]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  589.783876][T22231]  ? __alloc_skb+0x112/0x2d0
[  589.783922][T22231]  __alloc_skb+0x112/0x2d0
[  589.783973][T22231]  netlink_sendmsg+0x5c6/0xb30
[  589.784025][T22231]  ? __pfx_netlink_sendmsg+0x10/0x10
[  589.784065][T22231]  ? aa_sock_msg_perm+0xf1/0x1d0
[  589.784106][T22231]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  589.784133][T22231]  ? __pfx_netlink_sendmsg+0x10/0x10
[  589.784171][T22231]  __sock_sendmsg+0x219/0x270
[  589.784206][T22231]  ____sys_sendmsg+0x505/0x830
[  589.784240][T22231]  ? __pfx_____sys_sendmsg+0x10/0x10
[  589.784277][T22231]  ? import_iovec+0x74/0xa0
[  589.784310][T22231]  ___sys_sendmsg+0x21f/0x2a0
[  589.784338][T22231]  ? __pfx____sys_sendmsg+0x10/0x10
[  589.784410][T22231]  ? __fget_files+0x2a/0x420
[  589.784446][T22231]  ? __fget_files+0x3a0/0x420
[  589.784495][T22231]  __x64_sys_sendmsg+0x19b/0x260
[  589.784526][T22231]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  589.784567][T22231]  ? rcu_is_watching+0x15/0xb0
[  589.784593][T22231]  ? trace_sys_enter+0x25/0x100
[  589.784636][T22231]  do_syscall_64+0xfa/0x3b0
[  589.784671][T22231]  ? lockdep_hardirqs_on+0x9c/0x150
[  589.784704][T22231]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.784728][T22231]  ? clear_bhb_loop+0x60/0xb0
[  589.784759][T22231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  589.784781][T22231] RIP: 0033:0x7fea2858ebe9
[  589.784805][T22231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  589.784826][T22231] RSP: 002b:00007fea29497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  589.784851][T22231] RAX: ffffffffffffffda RBX: 00007fea287b5fa0 RCX: 00007fea2858ebe9
[  589.784870][T22231] RDX: 0000000020008040 RSI: 0000200000000280 RDI: 0000000000000003
[  589.784886][T22231] RBP: 00007fea29497090 R08: 0000000000000000 R09: 0000000000000000
[  589.784902][T22231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  589.784916][T22231] R13: 00007fea287b6038 R14: 00007fea287b5fa0 R15: 00007ffce044d788
[  589.784961][T22231]  </TASK>
[  591.019101][T22258] netlink: 'syz.3.5210': attribute type 1 has an invalid length.
[  591.028479][T22258] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5210'.
[  591.102729][T22260] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input75
[  591.478774][T22288] FAULT_INJECTION: forcing a failure.
[  591.478774][T22288] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  591.535299][T22288] CPU: 0 UID: 0 PID: 22288 Comm: syz.4.5222 Not tainted syzkaller #0 PREEMPT(full) 
[  591.535331][T22288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  591.535345][T22288] Call Trace:
[  591.535354][T22288]  <TASK>
[  591.535363][T22288]  dump_stack_lvl+0x189/0x250
[  591.535394][T22288]  ? __pfx____ratelimit+0x10/0x10
[  591.535425][T22288]  ? __pfx_dump_stack_lvl+0x10/0x10
[  591.535451][T22288]  ? __pfx__printk+0x10/0x10
[  591.535496][T22288]  should_fail_ex+0x414/0x560
[  591.535531][T22288]  _copy_to_user+0x31/0xb0
[  591.535558][T22288]  simple_read_from_buffer+0xe1/0x170
[  591.535595][T22288]  proc_fail_nth_read+0x1b3/0x220
[  591.535648][T22288]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  591.535677][T22288]  ? rw_verify_area+0x2a6/0x4d0
[  591.535703][T22288]  ? __lock_acquire+0xab9/0xd20
[  591.535732][T22288]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  591.535758][T22288]  vfs_read+0x200/0xa30
[  591.535785][T22288]  ? fdget_pos+0x247/0x320
[  591.535809][T22288]  ? __pfx___mutex_lock+0x10/0x10
[  591.535840][T22288]  ? __pfx_vfs_read+0x10/0x10
[  591.535878][T22288]  ? __fget_files+0x2a/0x420
[  591.535924][T22288]  ? __fget_files+0x3a0/0x420
[  591.535956][T22288]  ? __fget_files+0x2a/0x420
[  591.536002][T22288]  ksys_read+0x145/0x250
[  591.536032][T22288]  ? __pfx_ksys_read+0x10/0x10
[  591.536057][T22288]  ? rcu_is_watching+0x15/0xb0
[  591.536085][T22288]  ? do_syscall_64+0xbe/0x3b0
[  591.536121][T22288]  do_syscall_64+0xfa/0x3b0
[  591.536150][T22288]  ? lockdep_hardirqs_on+0x9c/0x150
[  591.536179][T22288]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.536200][T22288]  ? clear_bhb_loop+0x60/0xb0
[  591.536226][T22288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.536247][T22288] RIP: 0033:0x7f7d55b8d5fc
[  591.536265][T22288] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  591.536283][T22288] RSP: 002b:00007f7d53dd5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  591.536305][T22288] RAX: ffffffffffffffda RBX: 00007f7d55db6090 RCX: 00007f7d55b8d5fc
[  591.536320][T22288] RDX: 000000000000000f RSI: 00007f7d53dd50a0 RDI: 0000000000000004
[  591.536333][T22288] RBP: 00007f7d53dd5090 R08: 0000000000000000 R09: 0000000000000000
[  591.536346][T22288] R10: 0000000040000040 R11: 0000000000000246 R12: 0000000000000001
[  591.536359][T22288] R13: 00007f7d55db6128 R14: 00007f7d55db6090 R15: 00007ffcd4086cf8
[  591.536392][T22288]  </TASK>
[  591.823667][T22292] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input76
[  591.933806][T22292] netlink: 220 bytes leftover after parsing attributes in process `syz.3.5225'.
[  591.964118][T22295] sctp: [Deprecated]: syz.0.5226 (pid 22295) Use of int in max_burst socket option.
[  591.964118][T22295] Use struct sctp_assoc_value instead
[  592.042923][T22307] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  592.083139][T22303] ip6_vti0: Master is either lo or non-ether device
[  592.159612][T22315] mac80211_hwsim hwsim36 wlan0: entered promiscuous mode
[  592.309259][T22319] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5235'.
[  592.472116][T22332] netlink: 'syz.1.5239': attribute type 7 has an invalid length.
[  592.737336][    C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  592.986491][T22351] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5248'.
[  593.087325][T22319] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  593.249646][T22366] netem: change failed
[  593.288805][T22366] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  593.786421][T22384] bridge0: entered promiscuous mode
[  593.915940][T22392] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  594.284792][T22402] netlink: 'syz.4.5267': attribute type 2 has an invalid length.
[  594.428548][    C1] ------------[ cut here ]------------
[  594.434444][    C1] WARNING: CPU: 1 PID: 22410 at net/ipv4/af_inet.c:156 inet_sock_destruct+0x623/0x730
[  594.444101][    C1] Modules linked in:
[  594.448346][    C1] CPU: 1 UID: 0 PID: 22410 Comm: syz.2.5272 Not tainted syzkaller #0 PREEMPT(full) 
[  594.457799][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  594.467938][    C1] RIP: 0010:inet_sock_destruct+0x623/0x730
[  594.473807][    C1] Code: 0f 0b 90 e9 62 fe ff ff e8 da 93 bc f7 90 0f 0b 90 e9 95 fe ff ff e8 cc 93 bc f7 90 0f 0b 90 e9 bb fe ff ff e8 be 93 bc f7 90 <0f> 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc
[  594.493519][    C1] RSP: 0018:ffffc90000a08b48 EFLAGS: 00010246
[  594.499679][    C1] RAX: ffffffff8a031872 RBX: dffffc0000000000 RCX: ffff88806204da00
[  594.507767][    C1] RDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000
[  594.515870][    C1] RBP: 0000000000000fff R08: ffff88803147ee9f R09: 1ffff1100628fdd3
[  594.523930][    C1] R10: dffffc0000000000 R11: ffffed100628fdd4 R12: ffff88803147ec00
[  594.531979][    C1] R13: dffffc0000000000 R14: ffff88803147ee84 R15: 1ffff1100628fd82
[  594.540111][    C1] FS:  00007f84277e66c0(0000) GS:ffff888125d1c000(0000) knlGS:0000000000000000
[  594.549118][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  594.555746][    C1] CR2: 0000001b3350fce0 CR3: 000000007b66a000 CR4: 00000000003526f0
[  594.563794][    C1] Call Trace:
[  594.567143][    C1]  <IRQ>
[  594.570020][    C1]  ? inet6_cleanup_sock+0x197/0x230
[  594.575696][    C1]  ? __pfx_inet6_sock_destruct+0x10/0x10
[  594.581538][    C1]  __sk_destruct+0x86/0x660
[  594.586196][    C1]  ? __pfx___sk_destruct+0x10/0x10
[  594.591402][    C1]  ? rcu_core+0xc37/0x1770
[  594.595878][    C1]  rcu_core+0xca8/0x1770
[  594.600248][    C1]  ? __pfx_rcu_core+0x10/0x10
[  594.604995][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  594.610732][    C1]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  594.617058][    C1]  handle_softirqs+0x283/0x870
[  594.621922][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  594.626747][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  594.632126][    C1]  __irq_exit_rcu+0xca/0x1f0
[  594.636872][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  594.642161][    C1]  irq_exit_rcu+0x9/0x30
[  594.646454][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  594.652194][    C1]  </IRQ>
[  594.655162][    C1]  <TASK>
[  594.658156][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  594.664193][    C1] RIP: 0010:__sanitizer_cov_trace_const_cmp2+0x37/0x90
[  594.671133][    C1] Code: 08 40 a0 92 65 8b 0d 48 90 e0 10 81 e1 00 01 ff 00 74 11 81 f9 00 01 00 00 75 5b 83 ba 3c 16 00 00 00 74 52 8b 8a 18 16 00 00 <83> f9 03 75 47 48 8b 8a 20 16 00 00 44 8b 8a 1c 16 00 00 49 c1 e1
[  594.690909][    C1] RSP: 0018:ffffc900146aef18 EFLAGS: 00000246
[  594.697065][    C1] RAX: ffffffff89f63890 RBX: ffffc900146af040 RCX: 0000000000000003
[  594.705116][    C1] RDX: ffff88806204da00 RSI: 0000000000000002 RDI: 0000000000000000
[  594.713153][    C1] RBP: ffffc900146aeff0 R08: 0000000000002796 R09: 0000000000400000
[  594.721208][    C1] R10: 000000000004f2c8 R11: fffff520028d5e04 R12: 000000000000aa1b
[  594.729261][    C1] R13: dffffc0000000000 R14: ffff8880572f0cc0 R15: 1ffff920028d5e08
[  594.737324][    C1]  ? tcp_established_options+0xe0/0x610
[  594.742930][    C1]  tcp_established_options+0xe0/0x610
[  594.748396][    C1]  ? __pfx_tcp_established_options+0x10/0x10
[  594.754431][    C1]  ? ipv4_mtu+0x4b2/0x5c0
[  594.758844][    C1]  ? ipv4_mtu+0x23/0x5c0
[  594.763142][    C1]  tcp_current_mss+0x258/0x470
[  594.767996][    C1]  ? __pfx_tcp_current_mss+0x10/0x10
[  594.773357][    C1]  ? minmax_running_max+0x568/0xa90
[  594.778951][    C1]  tcp_xmit_retransmit_queue+0xbf/0xb40
[  594.785179][    C1]  ? bbr_min_tso_segs+0x43/0x60
[  594.790119][    C1]  ? bbr_main+0x2958/0x3da0
[  594.794704][    C1]  tcp_ack+0x4090/0x6150
[  594.799102][    C1]  ? __pfx_tcp_ack+0x10/0x10
[  594.804210][    C1]  tcp_rcv_established+0x7e9/0x1eb0
[  594.809489][    C1]  ? rt_is_expired+0x1c/0x2d0
[  594.814283][    C1]  ? __pfx_tcp_rcv_established+0x10/0x10
[  594.819984][    C1]  ? rt_is_expired+0x1c/0x2d0
[  594.824722][    C1]  ? rt_is_expired+0x1c/0x2d0
[  594.829478][    C1]  ? rt_is_expired+0x250/0x2d0
[  594.834307][    C1]  ? __pfx_ipv4_dst_check+0x10/0x10
[  594.839616][    C1]  ? __pfx_ipv4_dst_check+0x10/0x10
[  594.844855][    C1]  tcp_v4_do_rcv+0xa23/0xce0
[  594.849526][    C1]  ? __pfx_tcp_v4_do_rcv+0x10/0x10
[  594.854694][    C1]  __release_sock+0x21c/0x350
[  594.859458][    C1]  release_sock+0x5f/0x1f0
[  594.864311][    C1]  sk_stream_wait_memory+0x724/0xf70
[  594.869909][    C1]  ? __pfx_sk_stream_wait_memory+0x10/0x10
[  594.875772][    C1]  ? __pfx_woken_wake_function+0x10/0x10
[  594.881497][    C1]  ? __tcp_push_pending_frames+0xd2/0x360
[  594.887304][    C1]  ? tcp_push+0x40f/0x660
[  594.891684][    C1]  tcp_sendmsg_locked+0x2147/0x5620
[  594.897007][    C1]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  594.902675][    C1]  ? __local_bh_enable_ip+0x12d/0x1c0
[  594.908125][    C1]  ? __local_bh_enable_ip+0x12d/0x1c0
[  594.913565][    C1]  tcp_sendmsg+0x2f/0x50
[  594.917873][    C1]  __sock_sendmsg+0x19c/0x270
[  594.922617][    C1]  __sys_sendto+0x3bd/0x520
[  594.927217][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  594.932299][    C1]  ? do_futex+0x395/0x420
[  594.936705][    C1]  ? rcu_is_watching+0x15/0xb0
[  594.941541][    C1]  __x64_sys_sendto+0xde/0x100
[  594.946345][    C1]  do_syscall_64+0xfa/0x3b0
[  594.950938][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  594.956195][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.962314][    C1]  ? clear_bhb_loop+0x60/0xb0
[  594.967050][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  594.972999][    C1] RIP: 0033:0x7f842698ebe9
[  594.977576][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  594.997298][    C1] RSP: 002b:00007f84277e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  595.005775][    C1] RAX: ffffffffffffffda RBX: 00007f8426bb5fa0 RCX: 00007f842698ebe9
[  595.013853][    C1] RDX: 0000000000001d4c RSI: 0000200000000580 RDI: 0000000000000003
[  595.021874][    C1] RBP: 00007f8426a11e19 R08: 0000000000000000 R09: 0000000000000000
[  595.029905][    C1] R10: 0000000010048095 R11: 0000000000000246 R12: 0000000000000000
[  595.037962][    C1] R13: 00007f8426bb6038 R14: 00007f8426bb5fa0 R15: 00007fff10c5b9e8
[  595.046008][    C1]  </TASK>
[  595.049095][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  595.056520][    C1] CPU: 1 UID: 0 PID: 22410 Comm: syz.2.5272 Not tainted syzkaller #0 PREEMPT(full) 
[  595.065992][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  595.076075][    C1] Call Trace:
[  595.079376][    C1]  <IRQ>
[  595.082238][    C1]  dump_stack_lvl+0x99/0x250
[  595.086849][    C1]  ? __asan_memcpy+0x40/0x70
[  595.091475][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  595.096703][    C1]  ? __pfx__printk+0x10/0x10
[  595.101339][    C1]  vpanic+0x281/0x750
[  595.105353][    C1]  ? __pfx__printk+0x10/0x10
[  595.109962][    C1]  ? __pfx_vpanic+0x10/0x10
[  595.114494][    C1]  ? is_bpf_text_address+0x26/0x2b0
[  595.119732][    C1]  panic+0xb9/0xc0
[  595.123485][    C1]  ? __pfx_panic+0x10/0x10
[  595.127934][    C1]  __warn+0x31b/0x4b0
[  595.131940][    C1]  ? inet_sock_destruct+0x623/0x730
[  595.137190][    C1]  ? inet_sock_destruct+0x623/0x730
[  595.142526][    C1]  report_bug+0x2be/0x4f0
[  595.146904][    C1]  ? inet_sock_destruct+0x623/0x730
[  595.152132][    C1]  ? inet_sock_destruct+0x623/0x730
[  595.157349][    C1]  ? inet_sock_destruct+0x625/0x730
[  595.162565][    C1]  handle_bug+0x84/0x160
[  595.166870][    C1]  exc_invalid_op+0x1a/0x50
[  595.171394][    C1]  asm_exc_invalid_op+0x1a/0x20
[  595.176264][    C1] RIP: 0010:inet_sock_destruct+0x623/0x730
[  595.182112][    C1] Code: 0f 0b 90 e9 62 fe ff ff e8 da 93 bc f7 90 0f 0b 90 e9 95 fe ff ff e8 cc 93 bc f7 90 0f 0b 90 e9 bb fe ff ff e8 be 93 bc f7 90 <0f> 0b 90 e9 e1 fe ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 9f fc
[  595.201743][    C1] RSP: 0018:ffffc90000a08b48 EFLAGS: 00010246
[  595.207835][    C1] RAX: ffffffff8a031872 RBX: dffffc0000000000 RCX: ffff88806204da00
[  595.215907][    C1] RDX: 0000000000000100 RSI: 0000000000000fff RDI: 0000000000000000
[  595.223978][    C1] RBP: 0000000000000fff R08: ffff88803147ee9f R09: 1ffff1100628fdd3
[  595.231960][    C1] R10: dffffc0000000000 R11: ffffed100628fdd4 R12: ffff88803147ec00
[  595.239947][    C1] R13: dffffc0000000000 R14: ffff88803147ee84 R15: 1ffff1100628fd82
[  595.247945][    C1]  ? inet_sock_destruct+0x622/0x730
[  595.253166][    C1]  ? inet_sock_destruct+0x622/0x730
[  595.258382][    C1]  ? inet6_cleanup_sock+0x197/0x230
[  595.263590][    C1]  ? __pfx_inet6_sock_destruct+0x10/0x10
[  595.269246][    C1]  __sk_destruct+0x86/0x660
[  595.273763][    C1]  ? __pfx___sk_destruct+0x10/0x10
[  595.278884][    C1]  ? rcu_core+0xc37/0x1770
[  595.283333][    C1]  rcu_core+0xca8/0x1770
[  595.287629][    C1]  ? __pfx_rcu_core+0x10/0x10
[  595.292450][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  595.298128][    C1]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  595.304530][    C1]  handle_softirqs+0x283/0x870
[  595.309333][    C1]  ? __irq_exit_rcu+0xca/0x1f0
[  595.314212][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  595.319521][    C1]  __irq_exit_rcu+0xca/0x1f0
[  595.324219][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  595.329439][    C1]  irq_exit_rcu+0x9/0x30
[  595.333704][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  595.339478][    C1]  </IRQ>
[  595.342428][    C1]  <TASK>
[  595.345372][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  595.351453][    C1] RIP: 0010:__sanitizer_cov_trace_const_cmp2+0x37/0x90
[  595.358327][    C1] Code: 08 40 a0 92 65 8b 0d 48 90 e0 10 81 e1 00 01 ff 00 74 11 81 f9 00 01 00 00 75 5b 83 ba 3c 16 00 00 00 74 52 8b 8a 18 16 00 00 <83> f9 03 75 47 48 8b 8a 20 16 00 00 44 8b 8a 1c 16 00 00 49 c1 e1
[  595.378047][    C1] RSP: 0018:ffffc900146aef18 EFLAGS: 00000246
[  595.384178][    C1] RAX: ffffffff89f63890 RBX: ffffc900146af040 RCX: 0000000000000003
[  595.392179][    C1] RDX: ffff88806204da00 RSI: 0000000000000002 RDI: 0000000000000000
[  595.400169][    C1] RBP: ffffc900146aeff0 R08: 0000000000002796 R09: 0000000000400000
[  595.408162][    C1] R10: 000000000004f2c8 R11: fffff520028d5e04 R12: 000000000000aa1b
[  595.416161][    C1] R13: dffffc0000000000 R14: ffff8880572f0cc0 R15: 1ffff920028d5e08
[  595.424156][    C1]  ? tcp_established_options+0xe0/0x610
[  595.429727][    C1]  tcp_established_options+0xe0/0x610
[  595.435131][    C1]  ? __pfx_tcp_established_options+0x10/0x10
[  595.441135][    C1]  ? ipv4_mtu+0x4b2/0x5c0
[  595.445484][    C1]  ? ipv4_mtu+0x23/0x5c0
[  595.449743][    C1]  tcp_current_mss+0x258/0x470
[  595.454527][    C1]  ? __pfx_tcp_current_mss+0x10/0x10
[  595.459835][    C1]  ? minmax_running_max+0x568/0xa90
[  595.465085][    C1]  tcp_xmit_retransmit_queue+0xbf/0xb40
[  595.470651][    C1]  ? bbr_min_tso_segs+0x43/0x60
[  595.475518][    C1]  ? bbr_main+0x2958/0x3da0
[  595.480062][    C1]  tcp_ack+0x4090/0x6150
[  595.484387][    C1]  ? __pfx_tcp_ack+0x10/0x10
[  595.489024][    C1]  tcp_rcv_established+0x7e9/0x1eb0
[  595.494277][    C1]  ? rt_is_expired+0x1c/0x2d0
[  595.499165][    C1]  ? __pfx_tcp_rcv_established+0x10/0x10
[  595.504832][    C1]  ? rt_is_expired+0x1c/0x2d0
[  595.509530][    C1]  ? rt_is_expired+0x1c/0x2d0
[  595.514321][    C1]  ? rt_is_expired+0x250/0x2d0
[  595.519186][    C1]  ? __pfx_ipv4_dst_check+0x10/0x10
[  595.524404][    C1]  ? __pfx_ipv4_dst_check+0x10/0x10
[  595.529618][    C1]  tcp_v4_do_rcv+0xa23/0xce0
[  595.534240][    C1]  ? __pfx_tcp_v4_do_rcv+0x10/0x10
[  595.539369][    C1]  __release_sock+0x21c/0x350
[  595.544095][    C1]  release_sock+0x5f/0x1f0
[  595.548547][    C1]  sk_stream_wait_memory+0x724/0xf70
[  595.553878][    C1]  ? __pfx_sk_stream_wait_memory+0x10/0x10
[  595.559708][    C1]  ? __pfx_woken_wake_function+0x10/0x10
[  595.565376][    C1]  ? __tcp_push_pending_frames+0xd2/0x360
[  595.571113][    C1]  ? tcp_push+0x40f/0x660
[  595.575582][    C1]  tcp_sendmsg_locked+0x2147/0x5620
[  595.580850][    C1]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  595.586423][    C1]  ? __local_bh_enable_ip+0x12d/0x1c0
[  595.591818][    C1]  ? __local_bh_enable_ip+0x12d/0x1c0
[  595.597314][    C1]  tcp_sendmsg+0x2f/0x50
[  595.601581][    C1]  __sock_sendmsg+0x19c/0x270
[  595.606278][    C1]  __sys_sendto+0x3bd/0x520
[  595.611155][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  595.616202][    C1]  ? do_futex+0x395/0x420
[  595.620581][    C1]  ? rcu_is_watching+0x15/0xb0
[  595.625371][    C1]  __x64_sys_sendto+0xde/0x100
[  595.630169][    C1]  do_syscall_64+0xfa/0x3b0
[  595.634724][    C1]  ? lockdep_hardirqs_on+0x9c/0x150
[  595.640039][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.646124][    C1]  ? clear_bhb_loop+0x60/0xb0
[  595.650822][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  595.656734][    C1] RIP: 0033:0x7f842698ebe9
[  595.661171][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  595.680792][    C1] RSP: 002b:00007f84277e6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  595.689227][    C1] RAX: ffffffffffffffda RBX: 00007f8426bb5fa0 RCX: 00007f842698ebe9
[  595.697216][    C1] RDX: 0000000000001d4c RSI: 0000200000000580 RDI: 0000000000000003
[  595.705203][    C1] RBP: 00007f8426a11e19 R08: 0000000000000000 R09: 0000000000000000
[  595.713213][    C1] R10: 0000000010048095 R11: 0000000000000246 R12: 0000000000000000
[  595.721207][    C1] R13: 00007f8426bb6038 R14: 00007f8426bb5fa0 R15: 00007fff10c5b9e8
[  595.729211][    C1]  </TASK>
[  595.732620][    C1] Kernel Offset: disabled
[  595.736950][    C1] Rebooting in 86400 seconds..